Palo Alto Networks Exam PSE-DataCenter Topic 1 Question 2 Discussion

Actual exam question for Palo Alto Networks's PSE-DataCenter exam

Question #: 2
Topic #: 1

A client has a sensitive application server in their data center and is particularly concerned about resource exhaustion because of distributed denial-of-service attacks.

How can the Palo Alto Networks NGFW be configured to specifically protect this server against resource exhaustion originating from multiple IP addresses (DDoS attack)?

ADefine a custom App-ID to ensure that only legitimate application traffic reaches the server.

BAdd a Vulnerability Protection Profile to block the attack.

CAdd QoS Profiles to throttle incoming requests.

DAdd a DoS Protection Profile with defined session count.

Show Suggested Answer

Suggested Answer: D

by Simona at Jan 12, 2025, 02:18 AM

Limited Time Offer

25%

Off

Get Premium PSE-DataCenter Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

Submit Cancel

Marti

4 days ago

I think option D is the way to go. A DoS Protection Profile with defined session count sounds like the best way to protect against resource exhaustion from a DDoS attack.

upvoted 0 times

...