- All Exams Instant Download
What happens when an A/P firewall cluster synchronies IPsec tunnel security associations (SAs)?
What happens when an A/P firewall cluster synchronies IPsec tunnel security associations (SAs)?A . Phase 2 SAs are synchronized over HA2 links B. Phase 1 and Phase 2 SAs are synchronized over HA2 links C. Phase 1 SAs are synchronized over HA1 links D. Phase 1 and Phase 2 SAs...
Which three file types does WildFire inline ML analyze?
An administrator wants to enable WildFire inline machine learning. Which three file types does WildFire inline ML analyze? (Choose three.)A . MS Office B. ELF C. APK D. VBscripts E. Powershell scriptsView AnswerAnswer: A, B, E
Which combination of features can allow PAN-OS to detect exploit traffic in a session with TLS encapsulation?
A firewall administrator needs to be able to inspect inbound HTTPS traffic on servers hosted in their DMZ to prevent the hosted service from being exploited. Which combination of features can allow PAN-OS to detect exploit traffic in a session with TLS encapsulation?A . Decryption policy and a Data Filtering...
What is the best description of the HA4 Keep-Alive Threshold (ms)?
What is the best description of the HA4 Keep-Alive Threshold (ms)?A . the maximum interval between hello packets that are sent to verify that the HA functionality on the other firewall is operational. B. The time that a passive or active-secondary firewall will wait before taking over as the active...
What happens when the pushed Panorama configuration has Address Object names that duplicate the Address Objects already configured on the firewall?
An engineer is pushing configuration from Panorama lo a managed firewall. What happens when the pushed Panorama configuration has Address Object names that duplicate the Address Objects already configured on the firewall?A . The firewall rejects the pushed configuration, and the commit fails. B. The firewall renames the duplicate local...
How should you configure the firewall to allow access to any office-suite application?
You need to allow users to access the office-suite applications of their choice. How should you configure the firewall to allow access to any office-suite application?A . Create an Application Group and add Office 365, Evernote Google Docs and Libre Office B. Create an Application Group and add business-systems to...
What best explains these occurrences?
While analyzing the Traffic log, you see that some entries show "unknown-tcp" in the Application column. What best explains these occurrences?A . A handshake took place, but no data packets were sent prior to the timeout. B. A handshake took place; however, there were not enough packets to identify the...
In SSL Forward Proxy decryption, which two certificates can be used for certificate signing? (Choose two.)
In SSL Forward Proxy decryption, which two certificates can be used for certificate signing? (Choose two.)A . wildcard server certificate B. enterprise CA certificate C. client certificate D. server certificate E. self-signed CA certificateView AnswerAnswer: B,E Explanation: https://docs.paloaltonetworks.com/pan-os/10-1/pan-os-admin/decryption/configure-ssl-forward-proxy.html
When using certificate authentication for firewall administration, which method is used for authorization?
When using certificate authentication for firewall administration, which method is used for authorization?A . Radius B. LDAP C. Kerberos D. LocalView AnswerAnswer: A
Which CLI command is used to determine how much disk space is allocated to logs?
Which CLI command is used to determine how much disk space is allocated to logs?A . show logging-status B. show system info C. debug log-receiver show D. show system logdfo-quotaView AnswerAnswer: D
