What are three DNS policy actions? (Choose three.)
What are three DNS policy actions? (Choose three.)
The three DNS policy actions are Allow, Block, and Sinkhole. These actions are taken when DNS lookups are made to known malware sites. Allow permits the traffic, Block denies the traffic, and Sinkhole redirects the traffic to a controlled destination to analyze and mitigate threats.
ABDE Policy Action Choose an action to take when DNS lookups are made to known malware sites. The options are alert, allow, block, or sinkhole. The default action for Palo Alto Networks DNS signatures is sinkhole. https://docs.paloaltonetworks.com/pan-os/11-0/pan-os-web-interface-help/objects/objects-security-profiles-anti-spyware-profile
Answer is A,B,D
A,B,D,E Alert,allow,block,sinkhole
In the DNS policies tab of the Anti-Spyware Security profile, there are 4 policy actions: default, allow, block and sinkhole. Therefore A, B and D is correct
Sinkhole is default
A, B, D, and E are viable options according to this link: https://docs.paloaltonetworks.com/pan-os/9-1/pan-os-admin/threat-prevention/dns-security/enable-dns-security
A,B,D - The options for the action to be taken when DNS lookups are made to known malware sites for the DNS Security signature source under the Action on DNS Queries column are alert, allow, block, and sinkhole
Enable DNS Security --> https://docs.paloaltonetworks.com/dns-security/administration/configure-dns-security/enable-dns-security "Select an action to be taken when DNS lookups are made to known malware sites for the DNS Security signature source. The options are default, allow, block, or sinkhole. Verify that the action is set to sinkhole." A,B and D
Anwers ABE Policy Action Choose an action to take when DNS lookups are made to known malware sites. The options are alert, allow, block, or sinkhole. The default action for Palo Alto Networks DNS signatures is sinkhole.
Answer is missing we need to + enable