Q: 7
What is the impact of selecting the “Disable Server Response Inspection” checkbox after confirming
that a Security policy rule has a threat protection profile configured?
Options
Discussion
Option C is correct based on the docs and past practice exams. If you check "Disable Server Response Inspection," all server-to-client traffic skips threat inspection, no matter what profile is there. Some people mix this up with B, but the threat profile doesn't override that checkbox. Quick question: if the rule was for a non-HTTP app only, would that change the right pick here?
Guessing B , doesn't the profile override only for HTTP traffic from server to client?
Probably C, since disabling server response inspection means all server-to-client traffic bypasses threat inspection, no exceptions.
Its C, the checkbox bypasses threat inspection for all server-to-client traffic regardless of protocol.
Yeah, it's C. Once you tick that box, Palo Alto skips threat inspection for all traffic coming from server to client, regardless of the profile. B is a common trap because people assume the profile can override it, but it can't. Seen similar confusion on practice questions.
Be respectful. No spam.
