Palo Alto Networks System Engineer – Strata — Question 47
Which four actions can be configured in an Anti-Spyware profile to address command-and-control traffic from compromised hosts? (Choose four.)
Answer options
- A. Reset
- B. Quarantine
- C. Drop
- D. Allow
- E. Redirect
- F. Alert
Correct answer: A, C, D, F
Explanation
The correct actions to mitigate command-and-control traffic involve resetting connections, dropping packets, allowing certain traffic, and alerting administrators. Quarantine would isolate a threat but doesn't address the command-and-control traffic directly, and redirecting is not typically a preventive action for such scenarios.