PCNSA Question #189: Real Exam Question with Answer & Explanation

Sign in or unlock PCNSA to reveal the answer and full explanation for question #189. The question stem and answer options stay visible for context.

Submitted by rohit_dlh· Apr 18, 2026Securing Traffic

Question

Refer to the exhibit. An administrator is using DNAT to map two servers to a single public IP address. Traffic will be steered to the specific server based on the application, where Host A (10.1.1.100) receives HTTP traffic and Host B (10.1.1.101) receives SSH traffic. Which two Security policy rules will accomplish this configuration? (Choose two.)

Options

AUntrust (Any) to DMZ (1.1.1.100), ssh -Allow
BUntrust (Any) to Untrust (10.1.1.1), web-browsing -Allow
CUntrust (Any) to Untrust (10.1.1.1), ssh -Allow
DUntrust (Any) to DMZ (10.1.1.100, 10.1.1.101), ssh, web-browsing -Allow
EUntrust (Any) to DMZ (1.1.1.100), web-browsing -Allow

Unlock PCNSA to see the answer

You've previewed enough free PCNSA questions. Unlock PCNSA for full answers, explanations, the timed quiz mode, progress tracking, and the master PDF. Question stem and options stay visible so you can still see what's on the exam.

Unlock PCNSA - $49.99 / 30 days Sign in

Topics

#DNAT#Security Policy#Application Control#Zone-Based Policy

Full PCNSA Practice Browse All PCNSA Questions