Based on the capabilities of the Palo Alto Networks NGFW, what are two ways to configure a security policy using App-ID to comply with this request?

PCNSA V2 0 Comments

untrust to the internet

Based on the capabilities of the Palo Alto Networks NGFW, what are two ways to configure a security policy using App-ID to comply with this request? (Choose two)
A . Create a deny rule at the top of the policy from trust to untrust over any service and select evasive as the application
B. Create a deny rule at the top of the policy from trust to untrust with service application-default and select evasive as the application.
C. Create a deny rule at the top of the policy from trust to untrust over any service and add an application filter with the evasive characteristic.
D. Create a deny rule at the top of the policy from trust to untrust with service application-default and add an application filter with the evasive characteristic

Answer: D

Latest PCNSA Dumps Valid Version with 115 Q&As

Latest And Valid Q&A | Instant Download | Once Fail, Full Refund

Instant Download PCNSA PDF     PCNSA Questions Online Training
Subscribe
Notify of
guest
0 Comments
Inline Feedbacks
View all comments