Palo Alto Networks Exam PCNSE7 Topic 1 Question 3 Discussion

Actual exam question for Palo Alto Networks's PCNSE7 exam

Question #: 3
Topic #: 1

An administrator sees several inbound sessions identified as unknown-tcp in the Traffic logs. The administrator determines that these sessions are form external users accessing the company's proprietary accounting application. The administrator wants to reliably identify this traffic as their accounting application and to scan this traffic for threats.

Which option would achieve this result?

ACreate a custom App-ID and enable scanning on the advanced tab.

BCreate an Application Override policy.

CCreate a custom App-ID and use the ''ordered conditions'' check box.

DCreate an Application Override policy and custom threat signature for the application.

Show Suggested Answer

Suggested Answer: A

by Rodolfo at Dec 24, 2022, 05:30 AM

Limited Time Offer

25%

Off

Get Premium PCNSE7 Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

Submit Cancel

Currently there are no comments in this discussion, be the first to comment!