A system administrator runs a port scan using the company tool as part of vulnerability check. The administrator finds that the scan is identified as a threat and is dropped by the firewall. After further investigating the logs the administrator finds that the scan is dropped in the Threat Logs. What should the administrator do to allow the tool to scan through the firewall? A. Add the tool IP address to the reconnaissance protection source address exclusion in the DoS Protection profile. B. Add the tool IP address to the reconnaissance protection source address exclusion in the Zone Protection profile. C. Remove the Zone Protection profile from the zone setting. D. Change the TCP port scan action from Block to Alert in the Zone Protection profile. Â Suggested Answer: B This question is in PCNSE Palo Alto Networks Certified Network Security Engineer Exam For getting Palo Alto Networks Certified Network Security Engineer (PCNSE) Certificate Disclaimers: The website is not related to, affiliated with, endorsed or authorized by Palo Alto Networks. Trademarks, certification & product names are used for reference only and belong to Palo Alto Networks. The website does not contain actual questions and answers from Palo Alto Networks's Certification Exams.
Please login or Register to submit your answer