Cyber Monday 2024! Hurry Up, Grab the Special Discount - Save 25% - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions

Palo Alto Networks Exam PCNSE Topic 14 Question 80 Discussion

Actual exam question for Palo Alto Networks's PCNSE exam
Question #: 80
Topic #: 14
[All PCNSE Questions]

A firewall engineer creates a NAT rule to translate IP address 1.1.1.10 to 192.168.1.10. The engineer also plans to enable DNS rewrite so that the firewall rewrites the IPv4 address in a DNS response based on the original destination IP address and translated destination IP address configured for the rule. The engineer wants the firewall to rewrite a DNS response of 1.1.1.10 to 192.168.1.10.

What should the engineer do to complete the configuration?

Show Suggested Answer Hide Answer

Contribute your Thoughts:

Delmy
8 months ago
Okay, I can see that. But why do we need a U-Turn NAT for this scenario? Wouldn't that just complicate things unnecessarily?
upvoted 0 times
...
Romana
8 months ago
Yeah, I agree with Lemuel. The key is to have the DNS rewrite in the Translated Packet section, and the direction should be Reverse since we're translating the response, not the original request.
upvoted 0 times
...
Lemuel
8 months ago
I think option C is the way to go here. We need to enable DNS rewrite in the Translated Packet section with the direction set to Reverse.
upvoted 0 times
...
Chi
8 months ago
Hmm, this question seems tricky. We need to make sure the firewall is correctly rewriting the DNS response based on the NAT rule.
upvoted 0 times
Huey
8 months ago
C) Enable DNS rewrite under the destination address translation in the Translated Packet section of the NAT rule with the direction Reverse.
upvoted 0 times
...
Ammie
8 months ago
B) Enable DNS rewrite under the destination address translation in the Translated Packet section of the NAT rule with the direction Forward.
upvoted 0 times
...
...

Save Cancel