Exam NetSec-Pro Topic 4 Question 40 Discussion

Actual exam question for Palo Alto Networks's NetSec-Pro exam
Question #: 40
Topic #: 4
Which two security services are required for configuration of NGFW Security policies to protect against malicious and misconfigured domains? (Choose two.)

Suggested Answer: A,D Vote an answer

Protecting againstmaliciousandmisconfigured domainsrequires two critical services:
Advanced Threat Prevention
Provides signature-based and advanced analysis to identify threats, including DNS-based attacks.
"Advanced Threat Prevention enables the NGFW to detect and prevent exploits and malware-based communications, including those leveraging DNS." (Source: Advanced Threat Prevention) Advanced DNS Security Specifically designed to detect and sinkhole malicious and misconfigured DNS queries.
"DNS Security uses real-time intelligence to block DNS-based threats, protect against data exfiltration, and automatically sinkhole suspicious domain lookups." (Source: DNS Security) Bycombiningthese services in security policies, NGFWs ensure robust protection against domain-based threats and misconfigurations.

by Maxwell at Apr 01, 2026, 01:26 PM

Comments

Chosen Answer:
This is a voting comment (?) , you can switch to a simple comment.
Switch to a voting comment New
Nick name: Submit Cancel
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

0
0
0
10