Palo Alto Networks Exam PSE-DataCenter Topic 1 Question 9 Discussion

Actual exam question for Palo Alto Networks's PSE-DataCenter exam

Question #: 9
Topic #: 1

A client has a sensitive application server in their data center and is particularly concerned about resource exhaustion because of distributed denial-of-service attacks.

How can the Palo Alto Networks NGFW be configured to specifically protect this server against resource exhaustion originating from multiple IP addresses (DDoS attack)?

ADefine a custom App-ID to ensure that only legitimate application traffic reaches the server.

BAdd a Vulnerability Protection Profile to block the attack.

CAdd QoS Profiles to throttle incoming requests.

DAdd a DoS Protection Profile with defined session count.

Show Suggested Answer

Suggested Answer: D

by Katie at Apr 04, 2025, 07:00 AM

Limited Time Offer

25%

Off

Get Premium PSE-DataCenter Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

Submit Cancel

Jeanice

6 days ago

I believe defining a custom App-ID would also be beneficial to ensure only legitimate traffic reaches the server.

upvoted 0 times

...

Aleshia

7 days ago

I agree with Mabel, that would help prevent resource exhaustion from DDoS attacks.

upvoted 0 times

...

Mabel

8 days ago

I think we should add a DoS Protection Profile with defined session count.

upvoted 0 times

...

Maryln

14 days ago

D seems like the right choice here. Gotta protect that server from DDoS attacks!

upvoted 0 times

...