Palo Alto Networks Certified Network Security Administrator (PCNSA) — Question 162

You receive notification about new malware that infects hosts through malicious files transferred by FTP.

Which Security profile detects and protects your internal networks from this threat after you update your firewall’s threat signature database?

Answer options

• A. Data Filtering profile applied to outbound Security policy rules.
• B. Vulnerability Protection profile applied to outbound Security policy rules.
• C. URL Filtering profile applied to inbound Security policy rules.
• D. Antivirus profile applied to inbound Security policy rules.

Correct answer: D

Explanation

The Antivirus profile is designed to detect and block malware, including those that may come through FTP as malicious files, making it the correct choice. The Data Filtering profile focuses on content types rather than malware, the Vulnerability Protection profile addresses system vulnerabilities rather than direct malware detection, and the URL Filtering profile primarily manages web traffic without focusing specifically on malware within file transfers.