Palo Alto Networks Certified Network Security Engineer (PCNSE) — Question 291
An administrator wants to prevent users from unintentionally accessing malicious domains where data can be exfiltrated through established connections to remote systems. From the Pre-defined Categories tab within the URL Filtering profile what is the right configuration to prevent such connections?
Answer options
- A. Set the malware category to block
- B. Set the Command and Control category to block
- C. Set the phishing category to override
- D. Set the hacking category to continue
Correct answer: B
Explanation
The correct answer is B, as blocking the Command and Control category specifically targets communications with malicious servers that can exfiltrate data. The other options do not address the risk of established connections to remote systems that can lead to data theft, making them less effective in preventing such threats.