What are three DNS policy actions? (Choose three.)
What are three DNS policy actions? (Choose three.)
The three DNS policy actions are Allow, Block, and Sinkhole. These actions are taken when DNS lookups are made to known malware sites. Allow permits the traffic, Block denies the traffic, and Sinkhole redirects the traffic to a controlled destination to analyze and mitigate threats.
A,B,D,E Alert,allow,block,sinkhole
Answer is A,B,D
ABDE Policy Action Choose an action to take when DNS lookups are made to known malware sites. The options are alert, allow, block, or sinkhole. The default action for Palo Alto Networks DNS signatures is sinkhole. https://docs.paloaltonetworks.com/pan-os/11-0/pan-os-web-interface-help/objects/objects-security-profiles-anti-spyware-profile
In the DNS policies tab of the Anti-Spyware Security profile, there are 4 policy actions: default, allow, block and sinkhole. Therefore A, B and D is correct
Sinkhole is default
Enable DNS Security --> https://docs.paloaltonetworks.com/dns-security/administration/configure-dns-security/enable-dns-security "Select an action to be taken when DNS lookups are made to known malware sites for the DNS Security signature source. The options are default, allow, block, or sinkhole. Verify that the action is set to sinkhole." A,B and D
A,B,D - The options for the action to be taken when DNS lookups are made to known malware sites for the DNS Security signature source under the Action on DNS Queries column are alert, allow, block, and sinkhole
A, B, D, and E are viable options according to this link: https://docs.paloaltonetworks.com/pan-os/9-1/pan-os-admin/threat-prevention/dns-security/enable-dns-security
Answer is missing we need to + enable
Anwers ABE Policy Action Choose an action to take when DNS lookups are made to known malware sites. The options are alert, allow, block, or sinkhole. The default action for Palo Alto Networks DNS signatures is sinkhole.