Palo Alto Networks Network Security Professional Questions and Answers
How can a firewall administrator block a list of 300 unique URLs in the most time-efficient manner?
Which set of practices should be implemented with Cloud Access Security Broker (CASB) to ensure robust data encryption and protect sensitive information in SaaS applications?
What key capability distinguishes Content-ID technology from conventional network security approaches?
Which functionality does an NGFW use to determine whether new session setups are legitimate or illegitimate?
A cloud security architect is designing a certificate management strategy for Strata Cloud Manager (SCM) across hybrid environments. Which practice ensures optimal security with low management overhead?
A network security engineer wants to forward Strata Logging Service data to tools used by the Security Operations Center (SOC) for further investigation. In which best practice step of Palo Alto Networks Zero Trust does this fit?
Which two GlobalProtect modes allow partial users to access internal apps via GlobalProtect while other users access internal apps through third-party VPN?
How many places will a firewall administrator need to create and configure a custom data loss prevention (DLP) profile across Prisma Access and the NGFW?
Which action is only taken during slow path in the NGFW policy?
How are policies evaluated in the AWS management console when creating a Security policy for a Cloud NGFW?
Which procedure is most effective for maintaining continuity and security during a Prisma Access data plane software upgrade?
A network security engineer has created a Security policy in Prisma Access that includes a negated region in the source address. Which configuration will ensure there is no connectivity loss due to the negated region?
What is a necessary step for creation of a custom Prisma Access report on Strata Cloud Manager (SCM)?
Which action allows an engineer to collectively update VM-Series firewalls with Strata Cloud Manager (SCM)?
Which set of attributes is used by IoT Security to identify and classify appliances on a network when determining Device-ID?
Which two prerequisites must be evaluated when decrypting internet-bound traffic? (Choose two.)
Which AI-powered solution provides unified management and operations for NGFWs and Prisma Access?
What configurations are supported for Traffic Steering of Remote Network in Prisma Access?
A company has an ongoing initiative to monitor and control IT-sanctioned SaaS applications. To be successful, it will require configuration of decryption policies, along with data filtering and URL Filtering Profiles used in Security policies. Based on the need to decrypt SaaS applications, which two steps are appropriate to ensure success? (Choose two.)
Which firewall attribute can an engineer use to simplify rule creation and automatically adapt to changes in server roles or security posture based on log events?
Which configurations on hosts are supported for detection by HIP?