A customer with a legacy firewall architecture focused on port-and-protocol-level security has heard that NGFWs open all ports by default. Which of the following statements regarding Palo Alto Networks NGFWs is an appropriate rebuttal that explains an advantage over legacy firewalls? A. They do not consider port information, instead relying on App-ID signatures that do not reference ports. B. They protect all applications on all ports while leaving all ports open by default. C. They can control applications by application-default service ports or a configurable list of approved ports on a per-policy basis. D. They keep ports closed by default, only opening after understanding the application request, and then opening only the application-specified ports. Â Suggested Answer: D Community Answer: C This question is in PSE Strata Palo Alto Networks Systems Engineer (Strata) Exam For getting Palo Alto Networks Systems Engineer (PSE Strata) Certificate Disclaimers: The website is not related to, affiliated with, endorsed or authorized by Palo Alto Networks. Trademarks, certification & product names are used for reference only and belong to Palo Alto Networks. The website does not contain actual questions and answers from Palo Alto Networks's Certification Exams.
Please login or Register to submit your answer