Exam PSE Strata topic 1 question 85 discussion

The web host data centre does not need URL Filtering. This is only needed if there are outbound web browsing sessions. All the other listed components are generally needed everywhere.

I think none of the other answers make sense. I think the right answer should be B. Threat prevention or (IPS) will protect the web application from exploits

Why it is not D? DNS Security?

C is correct

I would say C: cloud-delivered security services are listed here: https://www.paloaltonetworks.com/network-security/security-subscriptions so we have ADVANCED URL Filtering and DNS Secutity. As the question is about WEB application so maybe it is about Advance URL Filtering

This question does not make sense. Do they want to protect the access to the new web from the outside or the headquarters users? Technically, WildFire is for unknow zero exploits discovery and reporting, is ideally to have it in both locations but again you do not need a license for it and still get the protection, Advanced URL filtering is just for web -traffic , if we are referring to protect user's web -browsing searching then this will be ideal but the question is too "vague" to assuming... Then, we have DNS security for new unregistered domains and known malicious domains, that can also be ideal for both locations... I would vote for Threat prevention... again is too vague.

I would say C, URL filtering makes more sense when protecting end users. In DC servers usually have more predictable communications, and hence you can build custom URL whitelists.

I think it should be A.