Palo Alto Networks Certified Network Security Administrator (PCNSA) — Question 188
An administrator would like to override the default deny action for a given application, and instead would like to block the traffic.
Which security policy action causes this?
Answer options
- A. Drop
- B. Drop, send ICMP Unreachable
- C. Reset both
- D. Reset client
Correct answer: A
Explanation
The 'Drop' action is the correct answer as it directly blocks the traffic without sending any additional response. The other options either send notifications or reset connections, which does not align with simply blocking the traffic.