Deal of The Day! Hurry Up, Grab the Special Discount - Save 25% - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions
Mail Us support@pass4success.com
Location US
Mob_nav_barsMENU

Palo Alto Networks Exam PCNSA Topic 3 Question 54 Discussion

Actual exam question for Palo Alto Networks's Palo Alto Networks Certified Network Security Administrator exam
Question #: 54
Topic #: 3
[All Palo Alto Networks Certified Network Security Administrator Questions]

All users from the internal zone must be allowed only HTTP access to a server in the DMZ zone.

Complete the empty field in the Security policy using an application object to permit only this type of access.

Source Zone: Internal -

Destination Zone: DMZ Zone -

Application: __________

Service: application-default -

Action: allow

Show Suggested Answer Hide Answer
Suggested Answer: B

by Linn at Dec 10, 2023, 02:34 AM

Limited Time Offer

25%

Off

Get Premium PCNSA Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

Submit Cancel
Micaela
24 days ago
You know, this question reminds me of the time I accidentally allowed all traffic from the internal zone to the DMZ zone. Let's just say the network admin wasn't too happy with me that day. *chuckles*
upvoted 0 times
...
Mertie
25 days ago
I agree with Yaeko. Using "http" as the application object is more specific and matches the requirement of allowing only HTTP access. It's a cleaner solution than "web-browsing".
upvoted 0 times
Hana
8 days ago
D) Application = "http"
upvoted 0 times
...
Caprice
9 days ago
C) Application = "ssl"
upvoted 0 times
...
Rory
10 days ago
I agree with Yaeko. Using "http" as the application object is more specific and matches the requirement of allowing only HTTP access. It's a cleaner solution than "web-browsing".
upvoted 0 times
...
Ira
11 days ago
B) Application = "web-browsing"
upvoted 0 times
...
James
12 days ago
A) Application = "any"
upvoted 0 times
...
...
Yaeko
26 days ago
I'm not so sure about that. Web-browsing is a bit broad, isn't it? I think the better choice would be D) Application = "http". That way, we're explicitly allowing HTTP traffic, which is what the question is asking for.
upvoted 0 times
...
Caprice
27 days ago
Hmm, this question seems straightforward. We need to allow only HTTP access from the internal zone to the DMZ zone. I think the correct answer is B) Application = "web-browsing".
upvoted 0 times
...

Save Cancel