ExamTopics Logo
Mail Us[email protected]
Menu
Palo-Alto-Networks Discussions
exam questions

Exam PCNSA All Questions

View all questions & answers for the PCNSA exam
Go to Exam

Exam PCNSA topic 1 question 239 discussion

Actual exam question from Palo Alto Networks's PCNSA
Question #: 239
Topic #: 1
[All PCNSA Questions]

An administrator wants to prevent users from unintentionally accessing malicious domains where data can be exfiltrated through established connections to remote systems.

From the Pre-defined Categories tab within the URL Filtering profile, what is the right configuration to prevent such connections?

  • A. Set the hacking category to continue.
  • B. Set the phishing category to override.
  • C. Set the malware category to block.
  • D. Set the Command and Control category to block.
Show Suggested Answer Hide Answer
Suggested Answer: D 🗳️
by john7809 at Jan. 20, 2023, 10:42 a.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
Oscar11
11 months ago
Selected Answer: C
There is not such category as command and control , they all come under malware category by setting "malware" to Block would achieve this. https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA10g000000Cm5hCAC
upvoted 1 times
Oscar11
11 months ago
Ignore my command above, there is Command and control category so D is correct answer
upvoted 2 times
...
...
claudio392
1 year, 4 months ago
Selected Answer: D
Command-and-control (C2) URLs and domains used by malware or compromised systems to surreptitiously communicate with an attacker's remote server to receive malicious commands or exfiltrate data.
upvoted 1 times
...
SillyGoose123
1 year, 10 months ago
Selected Answer: D
Malware doesn't inherently establish connections to remote servers. Command and control (C2) does this by definition. Answer is D.
upvoted 1 times
...
khaled_ellaboudy
1 year, 11 months ago
Selected Answer: D
Set COMMAND AND CONTROL category to block. This is the correct answer
upvoted 1 times
...
OhEmGee
1 year, 11 months ago
Selected Answer: D
Go to Objects -> Security Profiles -> URL Filtering -> Categories tab -> Search for Command-and-Control and set the action to Block D is the right answer.
upvoted 2 times
...
83KG
1 year, 11 months ago
Selected Answer: D
https://docs.paloaltonetworks.com/pan-os/9-1/pan-os-admin/url-filtering/url-categories/url-category-best-practices
upvoted 1 times
...
john7809
2 years ago
Selected Answer: D
I think that the correct answer is D Command-and-control is defined by Palo Alto Networks as URLs and domains used by malware and/or compromised systems to surreptitiously communicate with an attacker's remote server to receive malicious commands or exfiltrate data
upvoted 1 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel