- All Exams Instant Download
Which two methods can be configured to validate the revocation status of a certificate? (Choose two.)
Which two methods can be configured to validate the revocation status of a certificate? (Choose two.)A . CRLB . CRTC . OCSPD . Cert-Validation-ProfileE . SSL/TLS Service ProfileView AnswerAnswer: A,C
Which item enables a firewall administrator to see details about traffic that is currently active through the NGFW?
Which item enables a firewall administrator to see details about traffic that is currently active through the NGFW?A . ACCB . System LogsC . App ScopeD . Session BrowserView AnswerAnswer: D
How can the firewall be configured automatically disable the PBF rule if the next hop goes down?
A user’s traffic traversing a Palo Alto Networks NGFW sometimes can reach http://www.company.com. At other times the session times out. The NGFW has been configured with a PBF rule that the user’s traffic matches when it goes to http://www.company.com. How can the firewall be configured automatically disable the PBF rule...
Which configuration change should the administrator make?
An administrator needs to determine why users on the trust zone cannot reach certain websites. The only information available is shown on the following image. Which configuration change should the administrator make? A) B) C) D) E) A . Option AB . Option BC . Option CD . Option DE...
Based, on the image, what most likely is wrong?
The firewall is not downloading IP addresses from MineMeld. Based, on the image, what most likely is wrong?A . A Certificate Profile that contains the client certificate needs to be selected.B . The source address supports only files hosted with an ftp://<address/file>.C . External Dynamic Lists do not support SSL...
Which three file types can be forwarded to WildFire for analysis as a part of the basic WildFire service? (Choose three.)
Which three file types can be forwarded to WildFire for analysis as a part of the basic WildFire service? (Choose three.)A . dllB . exeC . srcD . apkE . pdfF . jarView AnswerAnswer: DEF Explanation: Reference: https://www.paloaltonetworks.com/documentation/80/wildfire/wf_admin/wildfire-overview/wildfire-file-type-support
How would an administrator configure the interface to 1Gbps?
A speed/duplex negotiation mismatch is between the Palo Alto Networks management port and the switch port which it connects. How would an administrator configure the interface to 1Gbps?A . set deviceconfig interface speed-duplex 1Gbps-full-duplexB . set deviceconfig system speed-duplex 1Gbps-duplexC . set deviceconfig system speed-duplex 1Gbps-full-duplexD . set deviceconfig Interface...
If a template stack is assigned to a device and the stack includes three templates with overlapping settings, which settings are published to the device when the template stack is pushed?
If a template stack is assigned to a device and the stack includes three templates with overlapping settings, which settings are published to the device when the template stack is pushed?A . The settings assigned to the template that is on top of the stack.B . The administrator will be...
Which CLI command is used to simulate traffic going through the firewall and determine which Security policy rule, NAT translation, static route, or PBF rule will be triggered by the traffic?
Which CLI command is used to simulate traffic going through the firewall and determine which Security policy rule, NAT translation, static route, or PBF rule will be triggered by the traffic?A . checkB . findC . testD . simView AnswerAnswer: C Explanation: Reference: http://www.shanekillen.com/2014/02/palo-alto-useful-cli-commands.html
Which certificates can be used as a Forwarded Trust certificate?
Refer to the exhibit. Which certificates can be used as a Forwarded Trust certificate?A . Certificate from Default Trust Certificate AuthoritiesB . Domain Sub-CAC . Forward_TrustD . Domain-Root-CertView AnswerAnswer: A
