A customer is concerned about zero-day targeted attacks against its intellectual property. Which solution informs a customer whether an attack is specifically targeted at them?
A. Traps TMS
B. AutoFocus
C. Panorama Correlation Report
D. Firewall Botnet Report
A company has deployed the following
1.
VM-300 firewalls in AWS
2.
endpoint protection with the Traps Management Service
3.
a Panorama M-200 for managing its VM-Series firewalls
4.
PA-5220s for its internet perimeter,
5.
Prisma SaaS for SaaS security.
Which two products can send logs to the Cortex Data Lake? (Choose two).
A. Prisma SaaS
B. Traps Management Service
C. VM-300 firewalls
D. Panorama M-200 appliance
The need for a file proxy solution, virus and spyware scanner, a vulnerability scanner, and HTTP decoder for URL filtering is handled by which component in the NGFW?
A. First Packet Processor
B. Stream-based Signature Engine
C. SIA (Scan It All) Processing Engine
D. Security Processing Engine
A customer worried about unknown attacks is hesitant to enable SSL decryption due to privacy and regulatory issues. How does the platform address the customer's concern?
A. It overcomes reservations about SSL decrypt by offloading to a higher-capacity firewall to help with the decrypt throughput
B. It shows how AutoFocus can provide visibility into targeted attacks at the industry sector
C. It allows a list of websites or URL categories to be defined for exclusion from decryption
D. It bypasses the need to decrypt SSL traffic by analyzing the file while still encrypted
What is an advantage of having WildFire machine learning (ML) capability Inline on the firewall?
A. It eliminates of the necessity for dynamic analysis in the cloud
B. It enables the firewall to block unknown malicious files in real time and prevent patient zero without disrupting business productivity
C. It is always able to give more accurate verdicts than the cloud ML analysis reducing false positives and false negatives
D. It improves the CPU performance of content inspection
In PAN-OS 10.0 and later, DNS Security allows policy actions to be applied based on which three domains? (Choose three.)
A. grayware
B. command and control (C2)
C. benign
D. government
E. malware
The firewall includes predefined reports, custom reports can be built for specific data and actionable tasks, or predefined and custom reports can be combined to compile information needed to monitor network security.
The firewall provides which three types of reports? (Choose three.)
A. SNMP Reports
B. PDF Summary Reports
C. Netflow Reports
D. Botnet Reports
E. User or Group Activity Reports
Which three platform components can identify and protect against malicious email links? (Choose three.)
A. WildFire hybrid cloud solution
B. WildFire public cloud
C. WF-500
D. M-200
E. M-600
A prospective customer currently uses a firewall that provides only Layer 4 inspection and protections. The customer sees traffic going to an external destination, port 53, but cannot determine what Layer 7 application traffic is going over that port
Which capability of PAN-OS would address the customer's lack of visibility?
A. Device ID, because it will give visibility into which devices are communicating with external destinations over port 53
B. single pass architecture (SPA), because it will improve the performance of the Palo Alto Networks Layer 7 inspection
C. User-ID, because it will allow the customer to see which users are sending traffic to external destinations over port 53
D. App-ID, because it will give visibility into what exact applications are being run over that port and allow the customer to block unsanctioned applications using port 53
Which two tabs in Panorama can be used to identify templates to define a common base configuration? (Choose two.)
A. Network Tab
B. Policies Tab
C. Device Tab
D. Objects Tab
Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only Palo Alto Networks exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your PSE-STRATA exam preparations and Palo Alto Networks certification application, do not hesitate to visit our Vcedump.com to find your solutions here.