PCNSE · Question #12
PCNSE Question #12: Real Exam Question with Answer & Explanation
Sign in or unlock PCNSE to reveal the answer and full explanation for question #12. The question stem and answer options stay visible for context.
Question
A critical US-CERT notification is published regarding a newly discovered botnet. The malware is very evasive and is not reliably detected by endpoint antivirus software. Furthermore, SSL is used to tunnel malicious traffic to command-and-control servers on the internet and SSL Forward Proxy Decryption is not enabled. Which component once enabled on a perimeter firewall will allow the identification of existing infected hosts in an environment?
Options
- AAnti-Spyware profiles applied outbound security policies with DNS Query action set to sinkhole
- BFile Blocking profiles applied to outbound security policies with action set to alert
- CVulnerability Protection profiles applied to outbound security policies with action set to block
- DAntivirus profiles applied to outbound security policies with action set to alert
Unlock PCNSE to see the answer
You've previewed enough free PCNSE questions. Unlock PCNSE for full answers, explanations, the timed quiz mode, progress tracking, and the master PDF. Question stem and options stay visible so you can still see what's on the exam.