Palo Alto Networks Exam PCNSE Topic 10 Question 49 Discussion

Actual exam question for Palo Alto Networks's PCNSE exam

Question #: 49
Topic #: 10

A Palo Alto Networks firewall is being targeted by an NTP Amplification attack and is being flooded with tens thousands of bogus UDP connections per second to a single destination IP address and post.

Which option when enabled with the correction threshold would mitigate this attack without dropping legitirnate traffic to other hosts insides the network?

AZone Protection Policy with UDP Flood Protection

BQoS Policy to throttle traffic below maximum limit

CSecurity Policy rule to deny trafic to the IP address and port that is under attack

DClassified DoS Protection Policy using destination IP only with a Protect action

Show Suggested Answer

Suggested Answer: D

by Margart at May 05, 2022, 01:18 AM

Limited Time Offer

25%

Off

Get Premium PCNSE Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

Submit Cancel

Currently there are no comments in this discussion, be the first to comment!