Palo Alto Networks Certified Network Security Administrator (PCNSA) — Question 320

An administrator receives a notification about new malware that is being used to attack hosts. The malware exploits a software bug in a common application.

Which Security Profile will detect and block access to this threat after the administrator updates the firewall's threat signature database?

Answer options

• A. Vulnerability Profile applied to inbound Security policy rules
• B. Antivirus Profile applied to outbound Security policy rules
• C. Data Filtering Profile applied to outbound Security policy rules
• D. Data Filtering Profile applied to inbound Security policy rules

Correct answer: A

Explanation

The correct answer is A, as a Vulnerability Profile is designed to detect and block threats that exploit software vulnerabilities, which is exactly the case with this malware. Options B, C, and D do not specifically address the exploitation of vulnerabilities, focusing instead on antivirus measures and data filtering, which are not effective against this type of threat.