Palo Alto Networks Certified Network Security Administrator (PCNSA) — Question 137

An administrator would like to override the default deny action for a given application, and instead would like to block the traffic.
Which security policy action causes this?

Answer options

Correct answer: A

Explanation

The 'Drop' action effectively blocks the traffic without sending any notification to the sender. Other options like 'Drop, send ICMP Unreachable' also block traffic but provide feedback, while 'Reset both' and 'Reset server' are used to terminate existing connections rather than simply denying new traffic.