ExamTopics Logo
Mail Us[email protected]
Menu
Palo-Alto-Networks Discussions
exam questions

Exam NetSec-Generalist All Questions

View all questions & answers for the NetSec-Generalist exam
Go to Exam

Exam NetSec-Generalist topic 1 question 55 discussion

Actual exam question from Palo Alto Networks's NetSec-Generalist
Question #: 55
Topic #: 1
[All NetSec-Generalist Questions]

Which functionality does an NGFW use to determine whether new session setups are legitimate or illegitimate?

  • A. SYN flood protection
  • B. SYN bit
  • C. Random Early Detection (RED)
  • D. SYN cookies
Show Suggested Answer Hide Answer
Suggested Answer: D 🗳️
by maffo02 at March 31, 2025, 9:28 p.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
maffo02
2 months, 2 weeks ago
Selected Answer: B
The correct answer is B. SYN bit. Here's why: SYN bit: The SYN (synchronize) bit is a flag within the TCP header that indicates the initiation of a TCP connection.   An NGFW analyzes the SYN bit to determine if a new session setup is a legitimate attempt to establish a connection. By inspecting the SYN bit and other TCP flags, the firewall can identify and block malicious session setups, such as SYN flood attacks.
upvoted 1 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel