Palo Alto Networks Certified Network Security Administrator (PCNSA) — Question 284

Which type of DNS signatures are used by the firewall to identify malicious and command-and-control domains?

Answer options

• A. DNS Malicious signatures
• B. DNS Security signatures
• C. DNS Malware signatures
• D. DNS Block signatures

Correct answer: B

Explanation

The correct answer is B, as DNS Security signatures are specifically designed to identify and mitigate threats from malicious domains. The other options, while related to security, do not directly refer to the signatures that the firewall uses for this purpose.