Palo Alto Networks Certified Network Security Administrator (PCNSA) — Question 404

Which built-in IP address EDL would be useful for preventing traffic from IP addresses that are verified as unsafe based on WildFire analysis, Unit 42 research, and data gathered from telemetry?

Answer options

• A. Palo Alto Networks High-Risk IP Addresses
• B. Palo Alto Networks Known Malicious IP Addresses
• C. Palo Alto Networks C&C IP Addresses
• D. Palo Alto Networks Bulletproof IP Addresses

Correct answer: B

Explanation

The correct answer is B, as the 'Palo Alto Networks Known Malicious IP Addresses' EDL specifically targets IPs verified as malicious through various sources, making it ideal for preventing unsafe traffic. Options A, C, and D do not focus solely on known malicious addresses, which makes them less effective for this purpose.