A firewall engineer supports a mission-critical network that has zero tolerance for application downtime. A best-practice action taken by the engineer is to configure an Applications and Threats update schedule with a new App-ID threshold of 48 hours.
Which two additional best-practice guideline actions should be taken with regard to dynamic updates? (Choose two.)

A. Configure an Applications and Threats update schedule with a threshold of 24 to 48 hours.

B. Click "Review Apps" after application updates are installed in order to assess how the changes might impact Security policy.

C. Create a Security policy rule with an application filter to always allow certain categories of new App-IDs.

D. Select the action "download-only" when configuring an Applications and Threats update schedule.








 

Suggested Answer: BD



This question is in PCNSE Palo Alto Networks Certified Network Security Engineer Exam
For getting Palo Alto Networks Certified Network Security Engineer (PCNSE) Certificate



Disclaimers:
The website is not related to, affiliated with, endorsed or authorized by Palo Alto Networks.
Trademarks, certification & product names are used for reference only and belong to Palo Alto Networks.
The website does not contain actual questions and answers from Palo Alto Networks's Certification Exams.