What is considered the best practice with regards to zone protection?

A. Use separate log-forwarding profiles to forward DoS and zone threshold event logs separately from other threat logs

B. Review DoS threat activity (ACC > Block Activity) and look for patterns of abuse

C. Set the Alarm Rate threshold for event-log messages to high severity or critical severity

D. If the levels of zone and DoS protection consume too many firewall resources, disable zone protection








 

Suggested Answer: D



This question is in PCNSE Palo Alto Networks Certified Network Security Engineer Exam
For getting Palo Alto Networks Certified Network Security Engineer (PCNSE) Certificate



Disclaimers:
The website is not related to, affiliated with, endorsed or authorized by Palo Alto Networks.
Trademarks, certification & product names are used for reference only and belong to Palo Alto Networks.
The website does not contain actual questions and answers from Palo Alto Networks's Certification Exams.