nerdexam
Palo_Alto_Networks

NETSEC-ANALYST · Question #359

NETSEC-ANALYST Question #359: Real Exam Question with Answer & Explanation

The correct answer is C. Anti-Spyware. In addition, you can enable the DNS sinkholing action in Anti-Spyware profiles to enable the firewall to forge a response to a DNS query for a known malicious domain, causing the malicious domain name to resolve to an IP address that you define. https://docs.paloaltonetworks.com/

Question

Which Security profile must be added to Security policies to enable DNS Signatures to be checked?

Options

  • AURL Filtering
  • BVulnerability Protection
  • CAnti-Spyware
  • DAntivirus

Explanation

In addition, you can enable the DNS sinkholing action in Anti-Spyware profiles to enable the firewall to forge a response to a DNS query for a known malicious domain, causing the malicious domain name to resolve to an IP address that you define. https://docs.paloaltonetworks.com/pan-os/11-0/pan-os-admin/policy/security-profiles

Community Discussion

No community discussion yet for this question.

Sign up to join the discussion
Full NETSEC-ANALYST Practice