Palo Alto Networks PSE PrismaCloud PSE Palo Alto Networks System Engineer Professional – Prisma Cloud Online Training
Palo Alto Networks PSE PrismaCloud Online Training
The questions for PSE PrismaCloud were last updated at Nov 22,2024.
- Exam Code: PSE PrismaCloud
- Exam Name: PSE Palo Alto Networks System Engineer Professional - Prisma Cloud
- Certification Provider: Palo Alto Networks
- Latest update: Nov 22,2024
Which two statements are true about CloudFormation? (Choose two.)
- A . CloudFormation is a procedural configuration management tool.
- B . CloudFormation templates can be used on both Amazon Web Services and Microsoft Azure
- C . CloudFormation templates can be written in JSON or YAML
- D . CloudFormation is a declarative orchestration tool.
Which framework in Prisma Public Cloud can be used to provide general best practices when no specific legal requirements or regulatory standards need to be met?
- A . HIPAA
- B . CIS Benchmark
- C . Payment Card Industry DSS V3
- D . GDPR
An Azure VNet has the IP network 10.0.0.0/16 with two subnets, 10.0.1.0/24 (used for web servers) and 10.0.2.0/24 (used for database servers).
Which is a valid IP address to manage the VM-Series NGFW?
- A . 10.0.1.254
- B . 10.0.2.1
- C . 10.0.3.255
- D . 10.0.3.1
Which option is true about VM-Series NGFW templates available from the Palo Alto Networks GitHub repository?
- A . Palo Alto Networks provides full support if a valid support license is in place.
- B . Support for the templates is available through Professional Services from Palo Alto Networks.
- C . Unless otherwise noted, these templates are released under an as-is. best effort support policy.
- D . The author of the template provides full support as long as the PAN-OS version specific to the template is supported.
A client has a sensitive internet-facing application server in Microsoft Azure and is concerned about resource exhaustion because of distributed denial-of-service attacks.
What can be configured on the VM-Series firewall to specifically protect this server against this type of attack?
- A . Custom threat signature
- B . Zone Protection Profile
- C . QoS Profile to limit incoming requests
- D . DoS Protection Profile with specific session counts
How can you modify a range of dates default policy in Prisma Public Cloud?
- A . Override the value and commit the configuration.
- B . Clone the existing policy and change the value.
- C . Manually create the RQL statement.
- D . Click the Gear icon next to the policy name to open the Edit Policy dialog
Which three methods can provide application-level security for a web server instance on Amazon Web Services? (Choose three.)
- A . Traps
- B . Prisma SaaS
- C . Amazon Web Services WAF
- D . VM-Series firewalls
- E . Security Groups
Palo Alto Networks recommends which two options for outbound HA design in Amazon Web Services using VM-Series NGFW? (Choose two.)
- A . iLB-as-next-hop
- B . transit gateway and security VPC with VM-Series
- C . traditional active/standby HA on VM-Series
- D . transit VPC and security VPC with VM-Series
Latest PSE PrismaCloud Dumps Valid Version with 60 Q&As
Latest And Valid Q&A | Instant Download | Once Fail, Full Refund
any new dumps
#15 is incorrect, you can only use CLI command after VM is operational.
#13 is incorrect, RQL queries for EC2 instances is config from cloud.resource where
#7 is better using a Zone Protection profile as DoS protection requires a match on IP, Internet too much to track, only way for DoS is to NAT to server IP. Zone Protection better option.