Cyber Monday 2024! Hurry Up, Grab the Special Discount - Save 25% - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions

Palo Alto Networks Exam PCNSA Topic 4 Question 55 Discussion

Actual exam question for Palo Alto Networks's PCNSA exam
Question #: 55
Topic #: 4
[All PCNSA Questions]

If users from the Trusted zone need to allow traffic to an SFTP server in the DMZ zone, how should a Security policy with App-ID be configured?

A)

B)

C)

D)

Show Suggested Answer Hide Answer
Suggested Answer: D

Contribute your Thoughts:

Tiera
8 months ago
I agree, Option C might not be the most secure approach. Option B looks better, as it has more specific source and destination zones.
upvoted 0 times
Rolande
8 months ago
We should go with Option B then.
upvoted 0 times
...
Dorian
8 months ago
Absolutely, having specific zones defined is crucial for security.
upvoted 0 times
...
Erin
8 months ago
Option B looks like the most secure approach.
upvoted 0 times
...
Kati
8 months ago
I agree, Option B seems to provide more specific source and destination zones.
upvoted 0 times
...
Cyndy
8 months ago
I think Option B is the correct choice.
upvoted 0 times
...
...
Clay
8 months ago
Hmm, I was also leaning towards Option C, but I'm not sure about the 'Any' source and destination addresses. Shouldn't we be more specific with the zones?
upvoted 0 times
...
Carri
8 months ago
I think Option C looks promising. The policy allows traffic from the Trusted zone to the SFTP server in the DMZ zone, and it's using App-ID to identify the SFTP application.
upvoted 0 times
...
Avery
8 months ago
This question seems pretty tricky. We need to be careful in selecting the right option as it involves configuring a security policy with App-ID.
upvoted 0 times
...

Save Cancel
az-700  pass4success  az-104  200-301  200-201  cissp  350-401  350-201  350-501  350-601  350-801  350-901  az-720  az-305  pl-300  

Warning: Cannot modify header information - headers already sent by (output started at /pass.php:70) in /pass.php on line 77