CNSE 4.1 Exam Preparation GuideV3.pptx - Palo Alto Networks
CNSE 4.1 Exam Preparation GuideV3.pptx - Palo Alto Networks
CNSE 4.1 Exam Preparation GuideV3.pptx - Palo Alto Networks
Create successful ePaper yourself
Turn your PDF publications into a flip-book with our unique Google optimized e-Paper software.
Disable Server Response Inspection<br />
• The vulnerability protection<br />
profile by default scans traffic<br />
going in both directions (from<br />
client to server, and from<br />
server to client)<br />
• Most IPSs only examine the<br />
traffic from the client to<br />
server.<br />
• The way to examine traffic<br />
from only client to server on<br />
the <strong>Palo</strong> <strong>Alto</strong> firewall is to<br />
check the box to “disable<br />
server response inspection”<br />
on the security policy<br />
(options column).<br />
Page 36 |