Palo Alto Networks Certified Network Security Engineer (PCNSE) — Question 268

A firewall administrator needs to be able to inspect inbound HTTPS traffic on servers hosted in their DMZ to prevent the hosted service from being exploited.
Which combination of features can allow PAN-OS to detect exploit traffic in a session with TLS encapsulation?

Answer options

• A. a WildFire profile and a File Blocking profile
• B. a Vulnerability Protection profile and a Decryption policy
• C. a Vulnerability Protection profile and a QoS policy
• D. a Decryption policy and a Data Filtering profile

Correct answer: B

Explanation

The correct answer is B because a Vulnerability Protection profile paired with a Decryption policy allows for the inspection of encrypted traffic, enabling the detection of exploits. Options A and C do not include the necessary decryption capability, and option D lacks the essential Vulnerability Protection profile to identify potential threats effectively.