Deal of The Day! Hurry Up, Grab the Special Discount - Save 25% - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions
Mail Us support@pass4success.com
Location US
Mob_nav_barsMENU

Palo Alto Networks Exam PCNSA Topic 4 Question 64 Discussion

Actual exam question for Palo Alto Networks's PCNSA exam
Question #: 64
Topic #: 4
[All PCNSA Questions]

Which administrator receives a global notification for a new malware that infects hosts. The infection will result in the infected host attempting to contact and command-and-control (C2) server.

Which security profile components will detect and prevent this threat after the firewall`s signature database has been updated?

Show Suggested Answer Hide Answer
Suggested Answer: B

Option B enables the required traffic by allowing SSL and web-browsing from UNTRUST to DMZ, denying SSH from UNTRUST to DMZ, allowing MYSQL from DMZ to SERVER, and allowing SSH from SERVER to DMZ. Option A allows SSH from UNTRUST to DMZ, which is not required. Option C denies all the required traffic.Option D denies all traffic from UNTRUST to TRUST, which is irrelevant to the question

https://www.paloaltonetworks.com/services/education/palo-alto-networks-certified-network-security-administrator


by Laurel at May 23, 2024, 07:04 AM

Limited Time Offer

25%

Off

Get Premium PCNSA Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

Submit Cancel
Isabelle
16 days ago
Wouldn't it be funny if the answer was 'All of the above'? Guess we'll have to wait and see!
upvoted 0 times
...
Lenora
17 days ago
I'm with Kirby on this one. The data filtering profile seems like the best way to catch that sneaky C2 traffic.
upvoted 0 times
...
Avery
19 days ago
Haha, I bet the vulnerability profile (D) is gonna be the one that stops the infection. Gotta love those security profiles!
upvoted 0 times
Josphine
1 days ago
User 2: I believe the data filtering profile (C) applied to outbound security policies will do the trick.
upvoted 0 times
...
Sherly
2 days ago
User 1: I think the antivirus profile (A) will detect and prevent the threat.
upvoted 0 times
...
...
Glynda
26 days ago
I'm not so sure about that. The antivirus profile applied to outbound security policies (A) might also be able to detect and block the malware traffic.
upvoted 0 times
Iola
20 days ago
User 1
upvoted 0 times
...
...
Marge
2 months ago
I'm not sure, but I think the data filtering profile applied to outbound security policies could also work to prevent the threat.
upvoted 0 times
...
Kirby
2 months ago
Hmm, I think the correct answer is C. The data filtering profile applied to outbound security policies would be able to detect and prevent the infected host from contacting the C2 server.
upvoted 0 times
Bambi
2 days ago
Definitely, having the right security measures in place can help prevent potential security breaches.
upvoted 0 times
...
Detra
3 days ago
That makes sense, it's important to have the right security profiles in place to protect against malware threats.
upvoted 0 times
...
Glenna
26 days ago
I agree, the data filtering profile applied to outbound security policies would be able to prevent the infected host from contacting the C2 server.
upvoted 0 times
...
Farrah
27 days ago
I think the correct answer is C.
upvoted 0 times
...
...
Kathryn
2 months ago
I agree with Celestina, the antivirus profile is the best option to stop the malware from infecting hosts.
upvoted 0 times
...
Celestina
2 months ago
I think the antivirus profile applied to outbound security policies will detect and prevent this threat.
upvoted 0 times
...

Save Cancel