ExamTopics Logo
Mail Us[email protected]
Menu
Palo-Alto-Networks Discussions
exam questions

Exam NGFW-Engineer All Questions

View all questions & answers for the NGFW-Engineer exam
Go to Exam

Exam NGFW-Engineer topic 1 question 16 discussion

Actual exam question from Palo Alto Networks's NGFW-Engineer
Question #: 16
Topic #: 1
[All NGFW-Engineer Questions]

When configuring a Zone Protection profile, in which section (protection type) would an NGFW engineer configure options to protect against activities such as spoofed IP addresses and split handshake session establishment attempts?

  • A. Flood Protection
  • B. Protocol Protection
  • C. Packet-Based Attack Protection
  • D. Reconnaissance Protection
Show Suggested Answer Hide Answer
Suggested Answer: B 🗳️
by Mohamed_Waly at April 29, 2025, 3:58 a.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
Mohamed_Waly
2 days, 12 hours ago
Selected Answer: C
The firewall can drop IP packets that contain specific header options or are malformed. Some packet-based attack protection recommendations apply somewhat equally to all organizations. For example, prevent IP address spoofing in security zones by selecting Spoofed IP address from the Packet based protection tab
upvoted 1 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
exam
Someone Bought Contributor Access for:
SY0-701
London, 1 minute ago