nerdexam
ExamsNGFW-ENGINEERQuestions#62
Palo_Alto_NetworksPalo_Alto_Networks

NGFW-ENGINEER · Question #62

NGFW-ENGINEER Question #62: Real Exam Question with Answer & Explanation

The correct answer is B: SSL/TLS decryption is not enabled. Most modern applications use encrypted traffic. Without SSL/TLS decryption, the NGFW cannot inspect packet payloads, limiting application

Application Identification and Traffic Visibility

Question

A company deploys an NGFW and notices that several applications running over HTTPS (TCP 443) cannot be accurately identified. What is the MOST likely reason for this behavior?

Options

  • AThe firewall does not support application control
  • BSSL/TLS decryption is not enabled
  • CNAT is misconfigured
  • DThe routing table is incomplete

Explanation

Most modern applications use encrypted traffic. Without SSL/TLS decryption, the NGFW cannot inspect packet payloads, limiting application

Topics

#NGFW#Application Identification#SSL/TLS Decryption#HTTPS

Community Discussion

No community discussion yet for this question.

Sign up to join the discussion
Full NGFW-ENGINEER PracticeBrowse All NGFW-ENGINEER Questions