- All Exams Instant Download
How would an administrator monitor/capture traffic on the management interface of the Palo Alto Networks NGFW?
How would an administrator monitor/capture traffic on the management interface of the Palo Alto Networks NGFW?A . Use the debug dataplane packet-diag set capture stage firewall file command.B . Enable all four stages of traffic capture (TX, RX, DROP, Firewall).C . Use the debug dataplane packet-diag set capture stage management...
How could the Palo Alto Networks NGFW administrator reduce WAN traffic while maintaining support for all existing monitoring/ security platforms?
Refer to exhibit. An organization has Palo Alto Networks NGFWs that send logs to remote monitoring and security management platforms. The network team has reported excessive traffic on the corporate WAN. How could the Palo Alto Networks NGFW administrator reduce WAN traffic while maintaining support for all existing monitoring/ security...
Which NGFW receives the configuration from Panorama?
An administrator pushes a new configuration from Panorama to a pair of firewalls that are configured as an active/passive HA pair. Which NGFW receives the configuration from Panorama?A . The Passive firewall, which then synchronizes to the active firewallB . The active firewall, which then synchronizes to the passive firewallC...
Which application should be used to identify traffic traversing the NGFW?
An administrator creates a custom application containing Layer 7 signatures. The latest application and threat dynamic update is downloaded to the same NGFW. The update contains an application that matches the same traffic signatures as the custom application. Which application should be used to identify traffic traversing the NGFW?A ....
A web server is hosted in the DMZ, and the server is configured to listen for incoming connections only on TCP port 8080. A Security policy rule allowing access from the Trust zone to the DMZ zone need to be configured to enable we browsing access to the server.
A web server is hosted in the DMZ, and the server is configured to listen for incoming connections only on TCP port 8080. A Security policy rule allowing access from the Trust zone to the DMZ zone need to be configured to enable we browsing access to the server. Which...
Decrypted packets from the website https://www.microsoft.com will appear as which application and service within the Traffic log?
Decrypted packets from the website https://www.microsoft.com will appear as which application and service within the Traffic log?A . web-browsing and 443B . SSL and 80C . SSL and 443D . web-browsing and 80View AnswerAnswer: A
Which three functions are performed by the dataplane?
An administrator has left a firewall to use the default port for all management services. Which three functions are performed by the dataplane? (Choose three.)A . WildFire updatesB . NATC . NTPD . antivirusE . File blockingView AnswerAnswer: BDE
Which two options could the administrator use to verify the progress or success of that commit task?
An administrator accidentally closed the commit window/screen before the commit was finished. Which two options could the administrator use to verify the progress or success of that commit task? (Choose two.) A . Exhibit AB . Exhibit BC . Exhibit CD . Exhibit DView AnswerAnswer: A, D
If the firewall has the link monitoring configuration, what will cause a failover?
If the firewall has the link monitoring configuration, what will cause a failover? A . ethernet1/3 and ethernet1/6 going downB . ethernet1/3 going downC . ethernet1/3 or Ethernet1/6 going downD . ethernet1/6 going downView AnswerAnswer: A
Which method will dynamically register tags on the Palo Alto Networks NGFW?
Which method will dynamically register tags on the Palo Alto Networks NGFW?A . Restful API or the VMWare API on the firewall or on the User-ID agent or the read-only domain controller (RODC)B . Restful API or the VMware API on the firewall or on the User-ID agentC . XML-API...
