Palo_Alto_NetworksPalo_Alto_Networks
PCNSE · Question #530
PCNSE Question #530: Real Exam Question with Answer & Explanation
Sign in or unlock PCNSE to reveal the answer and full explanation for question #530. The question stem and answer options stay visible for context.
Submitted by ashley.k· Apr 18, 2026Operate
Question
A firewall administrator notices that many Host Sweep scan attacks are being allowed through the firewall sourced from the outside zone. What should the firewall administrator do to mitigate this type of attack?
Options
- ACreate a DOS Protection profile with SYN Flood protection enabled and apply it to all rules
- BEnable packet buffer protection in the outside zone.
- CCreate a Security rule to deny all ICMP traffic from the outside zone.
- DCreate a Zone Protection profile, enable reconnaissance protection, set action to Block, and
Unlock PCNSE to see the answer
You've previewed enough free PCNSE questions. Unlock PCNSE for full answers, explanations, the timed quiz mode, progress tracking, and the master PDF. Question stem and options stay visible so you can still see what's on the exam.
Topics
#Zone Protection#Reconnaissance Protection#Host Sweep#Threat Mitigation