exam questions

Exam PCNSE All Questions

View all questions & answers for the PCNSE exam

Exam PCNSE topic 1 question 98 discussion

Actual exam question from Palo Alto Networks's PCNSE
Question #: 98
Topic #: 1
[All PCNSE Questions]

Which DoS protection mechanism detects and prevents session exhaustion attacks?

  • A. Packet Based Attack Protection
  • B. Flood Protection
  • C. Resource Protection
  • D. TCP Port Scan Protection
Show Suggested Answer Hide Answer
Suggested Answer: C 🗳️
Reference:
https://www.paloaltonetworks.com/documentation/80/pan-os/pan-os/zone-protection-and-dos-protection/zone-defense/dos-protection-profiles-and- policy-rules/dos-protection-profiles

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
rammsdoct
Highly Voted 4 years ago
Just to clarify, C: correct https://docs.paloaltonetworks.com/pan-os/7-1/pan-os-admin/policy/security-profiles/dos-protection-profiles
upvoted 8 times
...
lol1000
Highly Voted 3 years, 7 months ago
c https://docs.paloaltonetworks.com/pan-os/10-0/pan-os-admin/zone-protection-and-dos-protection/zone-defense/dos-protection-profiles-and-policy-rules/dos-protection-profiles.html
upvoted 8 times
...
Marshpillowz
Most Recent 5 months ago
Selected Answer: C
C is correct
upvoted 1 times
...
NTGuru
5 months, 4 weeks ago
In addition to setting IP flood thresholds, you can also use DoS Protection profiles to detect and prevent session exhaustion attacks in which a large number of hosts (bots) establish as many sessions as possible to consume a target’s resources. On the profile’s Resources Protection tab, you can set the maximum number of concurrent sessions that the device(s) defined in the DoS Protection policy rule to which you apply the profile can receive. When the number of concurrent sessions reaches its maximum limit, new sessions are dropped.
upvoted 1 times
...
gc999
7 months, 4 weeks ago
Just wonder why the answer is not "B". I see the question is prevent "attack". So if Resources Protection, it will limit the concurrent connections including legitate traffic. If the question is without the word "attack", then I will choose C.
upvoted 1 times
...
TAKUM1y
1 year, 9 months ago
Selected Answer: C
https://docs.paloaltonetworks.com/pan-os/10-2/pan-os-admin/zone-protection-and-dos-protection/zone-defense/dos-protection-profiles-and-policy-rules/dos-protection-profiles#ida42d52fa-3366-4695-bb4a-d39ebf3b6a5f
upvoted 1 times
...
eyelasers1
2 years, 4 months ago
C. In addition to setting IP flood thresholds, you can also use DoS Protection profiles to detect and prevent session exhaustion attacks in which a large number of hosts (bots) establish as many sessions as possible to consume a target’s resources. On the profile’s Resources Protection tab, you can set the maximum number of concurrent sessions that the device(s) defined in the DoS Protection policy rule to which you apply the profile can receive. When the number of concurrent sessions reaches its maximum limit, new sessions are dropped. https://docs.paloaltonetworks.com/pan-os/10-1/pan-os-admin/zone-protection-and-dos-protection/zone-defense/dos-protection-profiles-and-policy-rules/dos-protection-profiles.html
upvoted 2 times
...
evdw
3 years, 1 month ago
Correct Answer: C
upvoted 1 times
...
achille5
3 years, 3 months ago
Correct answer is C
upvoted 1 times
...
SB13
3 years, 5 months ago
CORRECTION: In addition to setting IP flood thresholds, you can also use DoS Protection profiles to detect and prevent session exhaustion attacks Answer is C
upvoted 3 times
...
SB13
3 years, 5 months ago
It is asking for which "mechanism" . Is the answer not B?
upvoted 2 times
GivemeMoney
2 years, 5 months ago
It is C not B. In addition to setting IP flood thresholds, you can also use DoS Protection profiles to detect and prevent session exhaustion attacks in which a large number of hosts (bots) establish as many sessions as possible to consume a target’s resources. On the profile’s Resources Protection tab, you can set the maximum number of concurrent sessions that the device(s) defined in the DoS Protection policy rule to which you apply the profile can receive. When the number of concurrent sessions reaches its maximum limit, new sessions are dropped. https://docs.paloaltonetworks.com/pan-os/10-0/pan-os-admin/zone-protection-and-dos-protection/zone-defense/dos-protection-profiles-and-policy-rules/dos-protection-profiles.html
upvoted 2 times
...
myname_1
1 year, 6 months ago
In the DoS protection profile, Flood Protection is separate from Resource Protection. Resource Protection allows you to specify the max number of concurrent sessions.
upvoted 1 times
...
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
Loading ...
exam
Someone Bought Contributor Access for:
SY0-701
London, 1 minute ago