Palo Alto Networks Network Security Professional — Question 6

How does a firewall behave when SSL Inbound Inspection is enabled?

Answer options

• A. It decrypts inbound and outbound SSH connections.
• B. It acts as meddler-in-the-middle between the client and the internal server.
• C. It acts transparently between the client and the internal server.
• D. It decrypts traffic between the client and the external server.

Correct answer: B

Explanation

When SSL Inbound Inspection is enabled, the firewall acts as a man-in-the-middle, allowing it to inspect decrypted traffic between the client and the internal server. Option A is incorrect because SSH and SSL are different protocols. Option C is wrong as it suggests the firewall does not interfere with the communication, which is not the case with SSL Inbound Inspection. Option D is misleading because it implies decryption occurs with external servers, while the focus is on internal server interactions.