PCNSA Question #214: Real Exam Question with Answer & Explanation

The correct answer is D: Palo Alto Networks Known Malicious IP Addresses. Palo Alto Networks Known Malicious IP Addresses --Contains IP addresses that are verified malicious based on WildFire analysis, Unit 42 research, and data gathered from telemetry (Share Threat Intelligence with Palo Alto Networks). Attackers use these IP addresses almost exclusiv

Submitted by tunde_lagos· Apr 18, 2026Securing Traffic

Question

Which built-in IP address EDL would be useful for preventing traffic from IP addresses that are verified as unsafe based on WildFire analysis Unit 42 research and data gathered from telemetry?

Options

APalo Alto Networks C&C IP Addresses
BPalo Alto Networks Bulletproof IP Addresses
CPalo Alto Networks High-Risk IP Addresses
DPalo Alto Networks Known Malicious IP Addresses

Explanation

Palo Alto Networks Known Malicious IP Addresses --Contains IP addresses that are verified malicious based on WildFire analysis, Unit 42 research, and data gathered from telemetry (Share Threat Intelligence with Palo Alto Networks). Attackers use these IP addresses almost exclusively to distribute malware, initiate command-and-control activity, and launch attacks. https://docs.paloaltonetworks.com/pan-os/9-1/pan-os-admin/policy/use-an-external-dynamic-list- in-policy/built-in-edls

Topics

#External Dynamic Lists (EDLs)#Threat Intelligence#IP Addresses#Security Policy

Community Discussion

No community discussion yet for this question.

Full PCNSA Practice Browse All PCNSA Questions