Palo Alto Networks Certified Network Security Administrator (PCNSA) — Question 308

Which Security profile must be added to Security policies to enable DNS Signatures to be checked?

Answer options

• A. URL Filtering
• B. Vulnerability Protection
• C. Anti-Spyware
• D. Antivirus

Correct answer: C

Explanation

The correct answer is C, Anti-Spyware, as it is specifically designed to check DNS Signatures for potential threats. The other options, while important for security, do not include the functionality to validate DNS Signatures.