If an administrator wants to decrypt SMTP traffic and possesses the server's certificate, which SSL decryption mode will allow the Palo Alto Networks NGFW to inspect traffic to the server?
If an administrator wants to decrypt SMTP traffic and possesses the server's certificate, which SSL decryption mode will allow the Palo Alto Networks NGFW to inspect traffic to the server?
To decrypt and inspect SMTP traffic directed to a server, where an administrator possesses the server's certificate, the correct mode is SSL Inbound Inspection. This mode allows the Palo Alto Networks NGFW to decrypt traffic intended for an internal server by using the server's certificate and private key. It enables inspection of secure traffic inbound to the server.
The answer is B, there are three types of decryption (excluding a no-decrypt' rule) that one can use on the PA: 1. SSL Forward Proxy - Inside to Outside (To the the internet) 2. SSL Inbound Proxy - Outside to Inside (usually towards a hosted webserver in your net) 3. SSH Forward Proxy - As is states, for SSH traffic. The important one to remember for this type of decryption is that no certs are required.
B is correct i think
B is correct
https://docs.paloaltonetworks.com/pan-os/10-2/pan-os-admin/decryption/configure-ssl-inbound-inspection
B is a correct one. A and D do not exist as an option. C. is not correct because SMTPs uses SSL not SSH
Correct answer is B
question say that '...possesses the server's certificate..' due to B is correct
answer is B
I guess B, but its a BS question. Possessing the certificate is only half of what you need. You need the private key as well which is left out from the question.