Using the API in PAN-OS 6.1, WildFire subscribers can upload up to how many samples per day?
A. 500
B. 50
C. 1000
D. 10
The "Drive-By Download" protection feature, under File Blocking profiles in Content-ID, provides:
A. Increased speed on downloads of file types that are explicitly enabled.
B. The ability to use Authentication Profiles, in order to protect against unwanted downloads.
C. Password-protected access to specific file downloads for authorized users.
D. Protection against unwanted downloads by showing the user a response page indicating that a file is going to be downloaded.
Which of the following objects cannot use User-ID as a match criteria?
A. Security Policies
B. QoS
C. Policy Based Forwarding
D. DoS Protection
E. None of the above
When setting up GlobalProtect, what is the job of the GlobalProtect Portal? Select the best answer
A. To maintain the list of remote GlobalProtect Portals and list of categories for checking the client machine
B. To maintain the list of GlobalProtect Gateways and list of categories for checking the client machine
C. To load balance GlobalProtect client connections to GlobalProtect Gateways
D. None of the above
Color-coded tags can be used on all of the items listed below EXCEPT:
A. Address Objects
B. Zones
C. Service Groups
D. Vulnerability Profiles
As ofPAN-OS 8.0, when configuring a Decryption Policy Rule, which of the following is NOT an available
option as matching criteria in the rule?
A. Application
B. Source User
C. URL Category
D. Source Zone
E. Service
As the Palo Alto Networks Administrator responsible for UserID, you need to enable mapping of network users that do not signin using LDAP. Which information source would allow for reliable UserID mapping while requiring the least effort to configure?
A. Active Directory Security Logs
B. WMI Query
C. Captive Portal
D. Exchange CAS Security logs
When troubleshooting Phase 1 of an IPSec VPN tunnel, what location will have the most informative logs?
A. Responding side, Traffic Logs
B. Initiating side, Traffic Logs
C. Responding side, System Logs
D. Initiating side, System Logs
When allowing an Application in a Security policy on a PAN-OS 5.0 device, would a dependency Application need to also be enabled if the application does not employ HTTP, SSL, MSRPC, RPC, t.120, RTSP, RTMP, and NETBIOS-SS.
A. Yes
B. No
In Active/Active HA environments, redundancy for the HA3 interface can be achieved by
A. Configuring a corresponding HA4 interface
B. Configuring HA3 as an Aggregate Ethernet bundle
C. Configuring multiple HA3 interfaces
D. Configuring HA3 in a redundant group
Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only Palo Alto Networks exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your ACE exam preparations and Palo Alto Networks certification application, do not hesitate to visit our Vcedump.com to find your solutions here.