Palo Alto Networks System Engineer – Strata — Question 12

Which of the following statements is valid with regard to Domain Name System (DNS) sinkholing?

Answer options

• A. It requires the Vulnerability Protection profile to be enabled.
• B. It requires a Sinkhole license in order to activate.
• C. DNS sinkholing signatures are packaged and delivered through Vulnerability Protection updates.
• D. Infected hosts connecting to the Sinkhole Internet Protocol (IP) address can be identified in the traffic logs.

Correct answer: D

Explanation

Answer D is correct because it accurately describes how infected hosts can be tracked through the traffic logs when they connect to the sinkhole IP address. The other options are incorrect; A and B state requirements that are not necessary for DNS sinkholing, while C misrepresents the delivery method of DNS sinkholing signatures.