Deal of The Day! Hurry Up, Grab the Special Discount - Save 25% - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions
Mail Us support@pass4success.com
Location US
Mob_nav_barsMENU

Palo Alto Networks Exam PCNSA Topic 4 Question 64 Discussion

Actual exam question for Palo Alto Networks's PCNSA exam
Question #: 64
Topic #: 4
[All PCNSA Questions]

Which administrator receives a global notification for a new malware that infects hosts. The infection will result in the infected host attempting to contact and command-and-control (C2) server.

Which security profile components will detect and prevent this threat after the firewall`s signature database has been updated?

Show Suggested Answer Hide Answer
Suggested Answer: B

Option B enables the required traffic by allowing SSL and web-browsing from UNTRUST to DMZ, denying SSH from UNTRUST to DMZ, allowing MYSQL from DMZ to SERVER, and allowing SSH from SERVER to DMZ. Option A allows SSH from UNTRUST to DMZ, which is not required. Option C denies all the required traffic.Option D denies all traffic from UNTRUST to TRUST, which is irrelevant to the question

https://www.paloaltonetworks.com/services/education/palo-alto-networks-certified-network-security-administrator


by Laurel at May 23, 2024, 07:04 AM

Limited Time Offer

25%

Off

Get Premium PCNSA Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

Submit Cancel
Marge
4 days ago
I'm not sure, but I think the data filtering profile applied to outbound security policies could also work to prevent the threat.
upvoted 0 times
...
Kirby
8 days ago
Hmm, I think the correct answer is C. The data filtering profile applied to outbound security policies would be able to detect and prevent the infected host from contacting the C2 server.
upvoted 0 times
...
Kathryn
9 days ago
I agree with Celestina, the antivirus profile is the best option to stop the malware from infecting hosts.
upvoted 0 times
...
Celestina
10 days ago
I think the antivirus profile applied to outbound security policies will detect and prevent this threat.
upvoted 0 times
...

Save Cancel