Palo Alto Networks Certified Network Security Administrator (PCNSA) — Question 374

Which Security profile should be applied in order to protect against illegal code execution?

Answer options

• A. Vulnerability Protection profile on allowed traffic
• B. Vulnerability Protection profile on denied traffic
• C. Antivirus profile on denied traffic
• D. Antivirus profile on allowed traffic

Correct answer: A

Explanation

The Vulnerability Protection profile on allowed traffic is the correct choice because it actively monitors and blocks any attempts at executing malicious code within legitimate traffic. The other options either focus on denied traffic or use antivirus, which is less effective for preventing code execution compared to vulnerability protection.