How can the Palo Alto Networks NGFW be configured to specifically protect this server against resource exhaustion originating from multiple IP addresses (DDoS attack)?

A client has a sensitive application server in their data center and is particularly concerned about resource exhaustion because of distributed denial-of-service attacks.How can the Palo Alto Networks NGFW be configured to specifically protect this server against resource exhaustion originating from multiple IP addresses (DDoS attack)?Reference: https://www.paloaltonetworks.com/documentation/71/pan-os/pan-os/policy/dos-protection-profiles

Question:

How can the Palo Alto Networks NGFW be configured to specifically protect this server against resource exhaustion originating from multiple IP addresses (DDoS attack)?

Options:

Define a custom App-ID to ensure that only legitimate application traffic reaches the server.

Add a Vulnerability Protection Profile to block the attack.

Add QoS Profiles to throttle incoming requests.

Add a DoS Protection Profile with defined session count.

Correct Answer

The Correct Answer for this Question is

Add a DoS Protection Profile with defined session count.