Palo Alto Networks Certified Network Security Engineer (PCNSE) — Question 483

Which rule type controls end user SSL traffic to external websites?

Answer options

• A. SSL Inbound Inspection
• B. SSH Proxy
• C. SSL Forward Proxy
• D. SSL Outbound Proxyless Inspection

Correct answer: C

Explanation

The correct answer is C, SSL Forward Proxy, which is specifically designed to handle outbound SSL traffic to external sites by intercepting and decrypting the traffic. Option A, SSL Inbound Inspection, applies to incoming traffic rather than outgoing, while B, SSH Proxy, pertains to a different protocol entirely. D, SSL Outbound Proxyless Inspection, is not a valid implementation type for controlling SSL traffic.