You have a remote access VPN where the remote users are using the NCP client. The remote users can access the internal corporate resources as intended; however, traffic that is destined to all other Internet sites is going through the remote access VPN. You want to ensure that only traffic that is destined to the internal corporate resources use the remote access VPN.
Which two actions should you take to accomplish this task? (Choose two.)
A . Enable the split tunneling feature within the VPN configuration on the SRX Series device
B . Enable IKEv2 within the VPN configuration on the SRX Series device
C . Configure the necessary traffic selectors within the VPN configuration on the SRX Series device
D . Configure split tunneling on the NCP profile on the remote client
Answer: CD
Explanation:
Reference: https://www.juniper.net/documentation/en_US/junos/topics/topic-map/security-remote-accessvpns-with-ncp-exclusive-remote-access-client.html