ExamTopics Logo
Mail Us[email protected]
Menu
Palo-Alto-Networks Discussions
exam questions

Exam PCNSA All Questions

View all questions & answers for the PCNSA exam
Go to Exam

Exam PCNSA topic 1 question 228 discussion

Actual exam question from Palo Alto Networks's PCNSA
Question #: 228
Topic #: 1
[All PCNSA Questions]

An administrator would like to apply a more restrictive Security profile to traffic for file sharing applications. The administrator does not want to update the Security policy or object when new applications are released.
Which object should the administrator use as a match condition in the Security policy?

  • A. the Online Storage and Backup URL category
  • B. the Content Delivery Networks URL category
  • C. an application group containing all of the file-sharing App-IDs reported in the traffic logs
  • D. an application filter for applications whose subcategory is file-sharing
Show Suggested Answer Hide Answer
Suggested Answer: D 🗳️
by nolox at March 16, 2023, 2:46 p.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
de7cdfd
3 weeks, 4 days ago
Selected Answer: D
D is correct
upvoted 1 times
...
cessnas
1 year, 1 month ago
Selected Answer: D
D is correct
upvoted 1 times
...
Zeruz
1 year, 4 months ago
Selected Answer: D
If C option is used, then the administrator has to update the group everytime a new app is added in new app updates.
upvoted 1 times
N1KH1L
1 year, 1 month ago
Answer D. The Administrator does not want to manually update the policy when the new applications are released.
upvoted 2 times
...
...
Ermbmx2
1 year, 7 months ago
Selected Answer: D
D. The only way the Admin will not have to update any Security policies or objects when the App ID is updated is if a Filter is used. Has to be D.
upvoted 2 times
...
Achuth
1 year, 8 months ago
Selected Answer: D
Answer seems to be D. The Administrator does not want to manually update the policy when the new new applications are released. So App filter is required to get it auto updated. The issue is question is not clear. It can be interpreted as you did and marked as C too.
upvoted 2 times
...
DatITGuyTho1337
1 year, 8 months ago
Rolling with D. App filters update the security rules so you don't have to do so manually when new apps are released. There will probably be new file sharing apps released onto the web on a monthly basis, filtering for the file sharing app filter object is the easiest way to stay updated without manually expanding the matching object condition on the security rule.
upvoted 1 times
...
nolox
1 year, 9 months ago
Selected Answer: C
When new app-IDs come out, the filter will be updated and that is not what admin wants.
upvoted 4 times
DatITGuyTho1337
1 year, 8 months ago
I would argue that the answer is D for app filters because using App groups would mean that the Admin would have to manually update the security policy and objects when new applications are released. The App filters does this automatically on the back end so the admin does not have to manually update the rule.
upvoted 1 times
...
Achuth
1 year, 8 months ago
Answer seems to be D. The Administrator does not want to manually update the policy when the new new applications are released. So App filter is required to get it auto updated. The issue is question is not clear. It can be interpreted as you did and marked as C too.
upvoted 1 times
...
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
exam
Someone Bought Contributor Access for:
SY0-701
London, 1 minute ago