A company moved its old port-based firewall to a new Palo Alto Networks NGFW 60 days ago. Which utility should the company use to identify out-of-date or unused rules on the firewall?
A. Rule Usage Filter > No App Specified
B. Rule Usage Filter >Hit Count > Unused in 30 days
C. Rule Usage Filter > Unused Apps
D. Rule Usage Filter > Hit Count > Unused in 90 days
Could the answer be ‘A’?
Old port-based firewall/rules maybe that are not configured with Application Control/ID on the new Palo…..
‘No App Specified’ filter is valid I believe and would show all the old ‘port-based’ rules along with hits.
Just a thought!
You can check Applications seen
on port-based rules over the past 7, 15, or 30 days, or over the rule’s lifetime (Anytime). For migrating rules, Anytime
provides the most complete assessment of applications that matched the rule.
D. Rule Usage Filter > Hit Count > Unused in 90 days — isnt a valid answer and Anytime isn’t an option so best answer is “B”
Why D is an invalid answer?
Yeah why D is invalid G?
I would stay to D because, B would not show older apps than 30 days
Shouldn’t the answer be B.
If you were to select Unused in 90 days and the Firewall was installed 60 day ago, wouldn’t nothing show up?