Examice

Exam PCNSA All QuestionsBrowse all questions from this exam

Question 278

An administrator configured a Security policy rule where the matching condition includes a single application and the action is set to deny.

What deny action will the firewall perform?

Discard the session’s packets and send a TCP reset packet to let the client know the session has been terminated

Drop the traffic silently

Perform the default deny action as defined in the App-ID database for the application

Send a TCP reset packet to the client- and server-side devices

Correct Answer: C

When a security policy rule with a deny action matches an application, the firewall performs the default deny action as defined in the App-ID database for that specific application. If no deny action is specified in the App-ID database for the application, the firewall will silently discard the packets.

Discussion

khaled_ellaboudyOption: C

Deny action on security policy rule initiate the default deny action for matched app on security profile. https://docs.paloaltonetworks.com/pan-os/10-1/pan-os-admin/policy/security-policy/security-policy-actions

cjaceOption: C

C. Perform the default deny action as defined in the App-ID database for the application When a Security policy rule is set to deny and it matches a single application, the firewall will perform the default deny action as defined in the App-ID database for the application1. If no Deny Action is listed in the App-ID description, the packets will be silently discarded

SillyGoose123Option: C

C is the correct answer

DlaEdu_ExOption: C

C is correct

OhEmGeeOption: C

https://docs.paloaltonetworks.com/pan-os/10-1/pan-os-admin/policy/security-policy/security-policy-actions