Get Unlimited Contributor Access to the all ExamTopics Exams!
Take advantage of PDF Files for 1000+ Exams along with community discussions and pass IT Certification Exams Easily.
An administrator has configured a Security policy where the matching condition includes a single application, and the action is drop. If the application's default deny action is reset-both, what action does the firewall take?
A.
It silently drops the traffic.
B.
It silently drops the traffic and sends an ICMP unreachable code.
C.
It sends a TCP reset to the server-side device.
D.
It sends a TCP reset to the client-side and server-side devices.
For traffic that matches the attributes defined in a security policy, you can apply the following actions:
DROP
Silently drops the traffic; for an application, it overrides the default deny action. A TCP reset is not sent to the host/application.
For Layer 3 interfaces, to optionally send an ICMP unreachable response to the client, set Action: Drop and enable the Send ICMP Unreachable check box. When enabled, the firewall sends the ICMP code for communication with the destination is administratively prohibited—ICMPv4: Type 3, Code 13; ICMPv6: Type 1, Code 1.
It looks like A.
D would be valid, if the security policy action will be deny and not drop as mentioned in the question.
https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA10g000000ClltCAC
answer id D as on the Palo Alto practice exam link below
https://beacon.paloaltonetworks.com/assessment_responses/report/16167409#assessment-response-details
"the action is drop" this is stated in the question :)
Drop:
Silently drops the traffic; for an application, it overrides the default deny action. A TCP reset is not sent to the host/application.
The answer is D https://docs.paloaltonetworks.com/pan-os/9-1/pan-os-admin/policy/security-policy/security-policy-actions
Reset both= Sends a TCP reset to both the client-side and server-side devices.
The correct answer is D. Reset-both => Sends a TCP reset to both the client-side and server-side devices.
https://docs.paloaltonetworks.com/pan-os/8-1/pan-os-web-interface-help/objects/objects-security-profiles-vulnerability-protection
This link refers to action for a signatures: Objects>Security ProfilesVulnerability Protection, and not for the exam question. Please refrain from posting incorrect answers!
Reset Both
For TCP, resets the connection on both the client and server ends. For UDP,
drops the connection.
upvoted 1 times
...
Log in to ExamTopics
Sign in:
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.
Upvoting a comment with a selected answer will also increase the vote count towards that answer by one.
So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.
davidmdlp85
2 weeks, 1 day agoNotimig
5 months, 1 week agoAndy222
7 months, 3 weeks agoblu_gandalf
11 months, 2 weeks agomr_flubber
11 months, 3 weeks agoo0ZACK0o
1 year, 1 month agoTandos
1 year, 1 month agoNeil_Neo234
1 year, 5 months agoDigitalEtrigan
1 year, 5 months agoDigitalEtrigan
1 year, 5 months agoFireACACIA
1 year, 5 months agoNajmmm
1 year, 5 months agofroggy2638
1 year, 6 months agokvothe86
1 year, 6 months agoTheMaster01
1 year, 7 months agoreinaldopazsandoval
1 year, 7 months agoH3kerman
2 years, 5 months ago