Which component enables you to configure firewall resource protection settings?
Which component enables you to configure firewall resource protection settings?
The component that enables you to configure firewall resource protection settings is the DoS Protection Profile. This profile is used to define thresholds and limits for protection against various types of Denial of Service (DoS) attacks, including those targeting the firewall's resources, by limiting the maximum number of concurrent sessions and protecting against IP flood attacks.
The question is firewall resource protection not end device resource protection.So I think it is C is correct.
https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA10g000000ClHDCA0
DoS protection protects individual critical servers/devices, the questions asks for Firewall resources so it should be Zone protection profile.
Answer is A. You specify a DoS protection profile in a DoS protection policy rule, where you specify the criteria for packets to match the rule, and the policy rule determines the devices to which the profile applies. Resource Protection Profile limits the maximum number of concurrent sessions.
Resource protection is part of "DoS Protection Profile" the correct awser is A - https://docs.paloaltonetworks.com/pan-os/11-0/pan-os-admin/zone-protection-and-dos-protection/zone-defense/dos-protection-profiles-and-policy-rules/dos-protection-profiles#ida42d52fa-3366-4695-bb4a-d39ebf3b6a5f:~:text=aggregate%20profiles%2C%20the-,Resources%20Protection,-threshold%20applies%20to
I go for C since you can enable it globaly on the firewall and a zone protection profile is a component that enables you to configure firewall resource protection settings for a zone. A zone protection profile allows you to set thresholds for various types of attacks, such as SYN floods, ICMP floods, UDP floods, and IP fragments. A DoS Protection Profile, on the other hand, is a component that enables you to configure firewall resource protection settings for individual IP addresses or subnets. A QoS Profile is a component that enables you to configure quality of service settings for traffic passing through the firewall. A DoS Protection policy is a component that enables you to apply a DoS Protection Profile to specific traffic based on source and destination zones.
https://docs.paloaltonetworks.com/pan-os/10-2/pan-os-admin/zone-protection-and-dos-protection/zone-defense/dos-protection-profiles-and-policy-rules https://docs.paloaltonetworks.com/pan-os/10-2/pan-os-admin/zone-protection-and-dos-protection/zone-defense/dos-protection-profiles-and-policy-rules/dos-protection-profiles The question asks to "configure...protection settings" DoS Protection policy rules determine the devices, users, zones, and services to which DoS Profiles apply. DoS Protection profiles set thresholds that protect against new session IP flood attacks and provide resource protection (maximum concurrent session limits for specified endpoints and resources). So I am leaning Answer A. The Profile gives the settings, and the policy describes what to protect.
Answer is A we can define the Resources Protection under Dos Protection Profile
Guy's 100% it's C It's about firewall ressource protection and not end device. End Device is related to DoS Protection profile
same with VenomX51
As already stated: Zone Protection Profile protects the firewall's resources. DoS Protection Profile protects the client/server's resources.
Answer should be C As taken from p48m1 " Zone Protection Profile protects the firewall's resources. DoS Protection Profile protects the client/server's resources."
DoS Protection profiles set thresholds that protect against new session IP flood attacks and provide resource protection (maximum concurrent session limits for specified endpoints and resources). https://docs.paloaltonetworks.com/pan-os/10-2/pan-os-admin/zone-protection-and-dos-protection/zone-defense/dos-protection-profiles-and-policy-rules/dos-protection-profiles
DOS is for specific endpoints, Zone is for the firewall itself so it all depends on how you think they intended the question be interpreted
C looks correct like other mentioned keyword 'FW Resource protection "
In the context of the following paloalto website article, the component that enables you to configure firewall resource protection settings is Zone Protection. Zone Protection is specifically mentioned as a measure to defend against Slow Path DoS Attacks on the firewall's resources. It tracks the connection-per-second rate incoming to a Zone, aggregating all connection-per-second rates for each protocol coming in on all interfaces tied to the protected Zone: SLOW PATH DOS ATTACKS AGAINST THE FIREWALL To defend the firewall resources from a Slow Path DoS Attack, use Zone Protection - Flood Protection. https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA14u000000sY1pCAE
DoS Protection Profiles DoS Protection profiles provide detailed control for Denial of Service (DoS) protection policy rules. DoS policy rules allow you to control the number of sessions between interfaces, zones, addresses, and countries based on aggregate sessions or source and/or destination IP addresses. There are two DoS protection mechanisms that the Palo Alto Networks firewalls support. Flood Protection—Detects and prevents attacks where the network is flooded with packets resulting in too many half-open sessions and/or services being unable to respond to each request. In this case, the source address of the attack is usually spoofed. See DoS Protection Against Flooding of New Sessions. Resource Protection— Detects and prevent session exhaustion attacks. In this type of attack, a large number of hosts (bots) are used to establish as many fully established sessions as possible to consume all of a system’s resources.
I think this one needs select 2