Palo Alto Networks Exam PCNSA Topic 1 Question 62 Discussion

Actual exam question for Palo Alto Networks's PCNSA exam

Question #: 62
Topic #: 1

Four configuration choices are listed, and each could be used to block access to a specific URL. If you configured each choices to block the sameURL then which choice would be the last to block access to the URL?

AEDL in URL Filtering Profile.

BCustom URL category in Security Policy rule.

CCustom URL category in URL Filtering Profile.

DPAN-DB URL category in URL Filtering Profile.

Show Suggested Answer

Suggested Answer: B

Option B enables the required traffic by allowing SSL and web-browsing from UNTRUST to DMZ, denying SSH from UNTRUST to DMZ, allowing MYSQL from DMZ to SERVER, and allowing SSH from SERVER to DMZ. Option A allows SSH from UNTRUST to DMZ, which is not required. Option C denies all the required traffic.Option D denies all traffic from UNTRUST to TRUST, which is irrelevant to the question

https://www.paloaltonetworks.com/services/education/palo-alto-networks-certified-network-security-administrator

by Leonor at May 02, 2024, 11:55 PM

Limited Time Offer

25%

Off

Get Premium PCNSA Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

Submit Cancel

Brianne

2 months ago

This question is making my head spin. I'm going to go with A) EDL in URL Filtering Profile and pray it's the right answer. Maybe I'll even get a bonus point for creativity.

upvoted 0 times

Sylvie

29 days ago

User 3: I'll choose B) Custom URL category in Security Policy rule.

upvoted 0 times

...

Desirae

1 months ago

User 2: I'm going with C) Custom URL category in URL Filtering Profile.

upvoted 0 times

...

Karl

1 months ago

User 1: I think the answer is D) PAN-DB URL category in URL Filtering Profile.

upvoted 0 times

...

Lina

2 months ago

Wait, so we're supposed to block the same URL using all four options? That sounds like a recipe for disaster. I'm just going to pick C) and hope for the best.

upvoted 0 times

...

Kimbery

2 months ago

Haha, this reminds me of the time I accidentally blocked the entire internet on my home network. Good times... Anyway, I'm going with B) Custom URL category in Security Policy rule.

upvoted 0 times

Adela

5 days ago

Leonora: Interesting, I guess we all have different opinions on this.

upvoted 0 times

...

Daniel

11 days ago

User 3: I'm going with A) EDL in URL Filtering Profile as the last choice to block access.

upvoted 0 times

...

Leonora

14 days ago

User 2: I disagree, I believe C) Custom URL category in URL Filtering Profile would be the last to block access.

upvoted 0 times

...

Justine

15 days ago

User 1: I think D) PAN-DB URL category in URL Filtering Profile would be the last to block access.

upvoted 0 times

...

Devorah

2 months ago

Interesting... I was leaning towards D) PAN-DB URL category in URL Filtering Profile, but I can see the logic behind C) as well. Guess I'll have to double-check my notes.

upvoted 0 times

...

Inocencia

2 months ago

Why do you think choice A would be the last to block access?

upvoted 0 times

...

Kristin

2 months ago

I disagree, I believe choice A would be the last to block access.

upvoted 0 times

...

Shizue

2 months ago

Hmm, this is a tricky one. I think the answer is C) Custom URL category in URL Filtering Profile, as that would be the last layer of defense before the traffic hits the firewall.

upvoted 0 times