nerdexam
Palo_Alto_Networks

PCNSE6 · Question #45

PCNSE6 Question #45: Real Exam Question with Answer & Explanation

The correct answer is B. Classified DoS Protection Policy using destination IP only with a Protect action. https://live.paloaltonetworks.com/docs/DOC-1746

Question

A Palo Alto Networks firewall is being targeted by an NTP Amplification attack and is being flooded with tens of thousands of bogus UDP connections per second to a single destination IP address and port. Which option, when enabled with the correct threshold, would mitigate this attack without dropping legitimate traffic to other hosts inside the network?

Options

  • AZone Protection Policy with UDP Flood Protection
  • BClassified DoS Protection Policy using destination IP only with a Protect action
  • CQoS Policy to throttle traffic below maximum limit
  • DSecurity Policy rule to deny traffic to the IP address and port that is under attack

Explanation

https://live.paloaltonetworks.com/docs/DOC-1746

Community Discussion

No community discussion yet for this question.

Sign up to join the discussion
Full PCNSE6 Practice