1. Home
  2. Discussions
  3. Paloalto Networks
  4. Palo Alto Certifications and Accreditations
  5. PCNSE Discussions
  6. PCNSE Exam Topic 3 Question 23 Discussion

Paloalto Networks Palo Alto Networks Certified Security Engineer (PCNSE) PAN-OS 11.0 PCNSE Question # 23 Topic 3 Discussion

 Paloalto Networks Discussions      Browse All Questions      Go to Exam Detail      Get Premium Access
 Previous
Next  

Paloalto Networks Palo Alto Networks Certified Security Engineer (PCNSE) PAN-OS 11.0 PCNSE Question # 23 Topic 3 Discussion

PCNSE Exam Topic 3 Question 23 Discussion:
Question #: 23
Topic #: 3

A firewall engineer creates a NAT rule to translate IP address 1.1.1.10 to 192.168.1.10. The engineer also plans to enable DNS rewrite so that the firewall rewrites the IPv4 address in a DNS response based on the original destination IP address and translated destination IP address configured for the rule. The engineer wants the firewall to rewrite a DNS response of 1.1.1.10 to 192.168.1.10.

What should the engineer do to complete the configuration?
A.

Create a U-Turn NAT to translate the destination IP address 192.168.1.10 to 1.1.1.10 with the destination port equal to UDP/53.

B.

Enable DNS rewrite under the destination address translation in the Translated Packet section of the NAT rule with the direction Forward.

C.

Enable DNS rewrite under the destination address translation in the Translated Packet section of the NAT rule with the direction Reverse.

D.

Create a U-Turn NAT to translate the destination IP address 1.1.1.10 to 192.168.1.10 with the destination port equal to UDP/53.

Get Premium PCNSE Questions
Actual exam question for Paloalto Networks PCNSE exam by Zephyr25456 at Aug 3, 2025, 12:00:00 AM

Contribute your Thoughts:


Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.

Submit
 Previous
Next