An administrator is troubleshooting an issue with traffic that matches the interzone-default rule, which is set to default configuration.
What should the administrator do?
An administrator is troubleshooting an issue with traffic that matches the interzone-default rule, which is set to default configuration.
What should the administrator do?
When troubleshooting an issue with traffic that matches the interzone-default rule, it is essential to change the logging action on the rule. By default, logging is turned off for this rule, so enabling logging will provide visibility into which traffic is matching this default rule and help in diagnosing the issue.
Answer is A by default logging is off. https://docs.paloaltonetworks.com/best-practices/10-2/internet-gateway-best-practices/best-practice-internet-gateway-security-policy/define-the-initial-internet-gateway-security-policy/step-5-enable-logging-for-traffic-that-doesnt-match-any-rules
Answer = A Traffic that does not match any of the rules you defined will match the predefined interzone-default rule at the bottom of the rulebase and be denied. For visibility into the traffic that is not matching any of the rules you created, enable logging on the interzone-default rule
answer A
A. logging is turned off by default.
A. Change the logging action on the rule12 When troubleshooting an issue with traffic that matches the interzone-default rule, it is a best practice to enable logging on the interzone-default rule