Deal of The Day! Hurry Up, Grab the Special Discount - Save 25% - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions
Mail Us support@pass4success.com
Location US
Mob_nav_barsMENU

Palo Alto Networks Exam PCNSA Topic 4 Question 64 Discussion

Actual exam question for Palo Alto Networks's PCNSA exam
Question #: 64
Topic #: 4
[All PCNSA Questions]

Which administrator receives a global notification for a new malware that infects hosts. The infection will result in the infected host attempting to contact and command-and-control (C2) server.

Which security profile components will detect and prevent this threat after the firewall`s signature database has been updated?

Show Suggested Answer Hide Answer
Suggested Answer: B

Option B enables the required traffic by allowing SSL and web-browsing from UNTRUST to DMZ, denying SSH from UNTRUST to DMZ, allowing MYSQL from DMZ to SERVER, and allowing SSH from SERVER to DMZ. Option A allows SSH from UNTRUST to DMZ, which is not required. Option C denies all the required traffic.Option D denies all traffic from UNTRUST to TRUST, which is irrelevant to the question

https://www.paloaltonetworks.com/services/education/palo-alto-networks-certified-network-security-administrator


by Laurel at May 23, 2024, 07:04 AM

Limited Time Offer

25%

Off

Get Premium PCNSA Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

Submit Cancel
Isabelle
2 months ago
Wouldn't it be funny if the answer was 'All of the above'? Guess we'll have to wait and see!
upvoted 0 times
...
Lenora
2 months ago
I'm with Kirby on this one. The data filtering profile seems like the best way to catch that sneaky C2 traffic.
upvoted 0 times
...
Avery
2 months ago
Haha, I bet the vulnerability profile (D) is gonna be the one that stops the infection. Gotta love those security profiles!
upvoted 0 times
Billy
1 months ago
User 4: Yeah, those security profiles are essential for keeping our network safe.
upvoted 0 times
...
Clay
2 months ago
User 3: I'm with you, I think the vulnerability profile (D) applied to inbound security policies is the key.
upvoted 0 times
...
Josphine
2 months ago
User 2: I believe the data filtering profile (C) applied to outbound security policies will do the trick.
upvoted 0 times
...
Sherly
2 months ago
User 1: I think the antivirus profile (A) will detect and prevent the threat.
upvoted 0 times
...
...
Glynda
2 months ago
I'm not so sure about that. The antivirus profile applied to outbound security policies (A) might also be able to detect and block the malware traffic.
upvoted 0 times
Abraham
23 days ago
User 3: What about the vulnerability profile applied to inbound security policies (D)? Could that also detect and prevent the threat?
upvoted 0 times
...
Emerson
24 days ago
User 2: I agree, but the data filtering profile applied to outbound security policies (C) could also help in blocking the malware traffic.
upvoted 0 times
...
Colby
1 months ago
User 1
upvoted 0 times
...
Leota
1 months ago
User 1: I think the antivirus profile applied to outbound security policies (A) would be able to detect and prevent the malware.
upvoted 0 times
...
Eden
1 months ago
User 2
upvoted 0 times
...
Iola
2 months ago
User 1
upvoted 0 times
...
...
Marge
3 months ago
I'm not sure, but I think the data filtering profile applied to outbound security policies could also work to prevent the threat.
upvoted 0 times
...
Kirby
3 months ago
Hmm, I think the correct answer is C. The data filtering profile applied to outbound security policies would be able to detect and prevent the infected host from contacting the C2 server.
upvoted 0 times
Bambi
2 months ago
Definitely, having the right security measures in place can help prevent potential security breaches.
upvoted 0 times
...
Detra
2 months ago
That makes sense, it's important to have the right security profiles in place to protect against malware threats.
upvoted 0 times
...
Glenna
2 months ago
I agree, the data filtering profile applied to outbound security policies would be able to prevent the infected host from contacting the C2 server.
upvoted 0 times
...
Farrah
3 months ago
I think the correct answer is C.
upvoted 0 times
...
...
Kathryn
3 months ago
I agree with Celestina, the antivirus profile is the best option to stop the malware from infecting hosts.
upvoted 0 times
...
Celestina
4 months ago
I think the antivirus profile applied to outbound security policies will detect and prevent this threat.
upvoted 0 times
...

Save Cancel