Which option shows the attributes that are selectable when setting up application filters?

Category, Subcategory, Technology, Risk, and Characteristic

Category, Subcategory, Technology, and Characteristic

Name, Category, Technology, Risk, and Characteristic

Category, Subcategory, Risk, Standard Ports, and Technology

Which two statements are correct about App-ID content updates? (Choose two.)

Updated application content might change how Security policy rules are enforced.

After an application content update, new applications are automatically identified and classified.

After an application content update, new applications must be manually classified prior to use.

Existing security policy rules are not affected by application content updates.

An administrator needs to allow users to use their own office applications. How should the administrator configure the firewall to allow multiple applications in a dynamic environment?

Create an Application Filter and name it Office Programs, then filter it on the business-systems category, office-programs subcategory

Create an Application Group and add business-systems to it

Create an Application Filter and name it Office Programs, then filter it on the business-systems category

Create an Application Group and add Office 365, Evernote, Google Docs, and Libre Office

Which statement is true regarding a Best Practice Assessment?

It provides a percentage of adoption for each assessment area

The BPA tool can be run only on firewalls

The assessment, guided by an experienced sales engineer, helps determine the areas of greatest risk where you should focus prevention activities

It provides a set of questionnaires that help uncover security risk prevention gaps across all areas of network and security architecture

Choose the option that correctly completes this statement. A Security Profile can block or allow traffic ____________.

after it is matched by a security policy rule that allows traffic.

on either the data place or the management plane.

after it is matched by a security policy rule that allows or blocks traffic.

A company moved its old port-based firewall to a new Palo Alto Networks NGFW 60 days ago. Which utility should the company use to identify out-of-date or unused rules on the firewall?

Policies > Policy Optimizer > Unused in 90 days

Policies > Policy Optimizer > No App Specified

Policies > Policy Optimizer > Unused in 30 days

Policies > Policy Optimizer > Unused Apps

What are two differences between an implicit dependency and an explicit dependency in App-ID? (Choose two.)

An implicit dependency does not require the dependent application to be added in the security policy

An explicit dependency requires the dependent application to be added in the security policy

An implicit dependency requires the dependent application to be added in the security policy

An explicit dependency does not require the dependent application to be added in the security policy

Recently changes were made to the firewall to optimize the policies and the security team wants to see if those changes are helping. What is the quickest way to reset the hit counter to zero in all the security policy rules?

Use the Reset Rule Hit Counter > All Rules option

At the CLI enter the command reset rules and press Enter

Highlight a rule and use the Reset Rule Hit Counter > Selected Rules for each rule

Which User-ID agent would be appropriate in a network with multiple WAN links, limited network bandwidth, and limited firewall management plane resources?

Windows-based agent deployed on the internal network

PAN-OS integrated agent deployed on the internal network

Citrix terminal server deployed on the internal network

Windows-based agent deployed on each of the WAN Links

An administrator receives a global notification for a new malware that infects hosts. The infection will result in the infected host attempting to contact a command- and-control (C2) server. Which two security profile components will detect and prevent this threat after the firewall's signature database has been updated? (Choose two.)

antivirus profile applied to outbound security policies

anti-spyware profile applied to outbound security policies

vulnerability protection profile applied to outbound security policies

URL filtering profile applied to outbound security policies

The CFO found a USB drive in the parking lot and decide to plug it into their corporate laptop. The USB drive had malware on it that loaded onto their computer and then contacted a known command and control (CnC) server, which ordered the infected machine to begin Exfiltrating data from the laptop. Which security profile feature could have been used to prevent the communication with the CnC server?

Create an anti-spyware profile and enable DNS Sinkhole

Create an antivirus profile and enable DNS Sinkhole

Create a URL filtering profile and block the DNS Sinkhole category

Create a security policy and enable DNS Sinkhole Hide Solution Discussion

Which three statements describe the operation of Security policy rules and Security Profiles? (Choose three.)

Security policy rules can block or allow traffic.

Security Profiles are attached to Security policy rules.

Security Profiles should be used only on allowed traffic.

Security policy rules inspect but do not block traffic.

Security policy rules are attached to Security Profiles.

Given the image, which two options are true about the Security policy rules. (Choose two.)

The Allow Office Programs rule is using an Application Filter

In the Allow Social Networking rule, allows all of Facebook's functions

In the Allow FTP to web server rule, FTP is allowed using App-ID

The Allow Office Programs rule is using an Application Group

Which two statements are correct regarding multiple static default routes when they are configured as shown in the image? (Choose two.)

Path monitoring determines if route is useable.

Route with lowest metric is actively used.

Path monitoring does not determine if route is useable.

Route with highest metric is actively used.

Which statement is true regarding a Prevention Posture Assessment?

It provides a set of questionnaires that help uncover security risk prevention gaps across all areas of network and security architecture

The Security Policy Adoption Heatmap component filters the information by device groups, serial numbers, zones, areas of architecture, and other categories

It provides a percentage of adoption for each assessment area

It performs over 200 security checks on Panorama/firewall for the assessment

Which built-in IP address EDL would be useful for preventing traffic from IP addresses that are verified as unsafe based on WildFire analysis Unit 42 research and data gathered from telemetry?

Palo Alto Networks Known Malicious IP Addresses

Palo Alto Networks Bulletproof IP Addresses

Palo Alto Networks High-Risk IP Addresses

Palo Alto Networks Tor Exit IP Addresses

An administrator receives a global notification for a new malware that infects hosts. The infection will result in the infected host attempting to contact and command-and-control (C2) server. Which security profile components will detect and prevent this threat after the firewall's signature database has been updated?

antivirus profile applied to outbound security policies

data filtering profile applied to inbound security policies

data filtering profile applied to outbound security policies

vulnerability profile applied to inbound security policies

Which feature would be useful for preventing traffic from hosting providers that place few restrictions on content, whose services are frequently used by attackers to distribute illegal or unethical material?

Palo Alto Networks Bulletproof IP Addresses

Palo Alto Networks C&C IP Addresses

Palo Alto Networks Known Malicious IP Addresses

Palo Alto Networks High-Risk IP Addresses

PANWCOE

Authored by Steve Brusas

Professional Development

1st - 3rd Grade

Used 110+ times

AI Actions

Add similar questions

Adjust reading levels

Convert to real-world scenario

Translate activity

More...

Content View

Student View

100 questions

Show all answers

MULTIPLE CHOICE QUESTION

2 mins • 1 pt

What action will inform end users when their access to Internet content is being restricted?

Ensure that the 'site access" setting for all URL sites is set to 'alert'.

Create a custom 'URL Category' object with notifications enabled.

Enable 'Response Pages' on the interface providing Internet access.

Publish monitoring data for Security policy deny logs.

MULTIPLE CHOICE QUESTION

2 mins • 1 pt

What must be configured before setting up Credential Phishing Prevention?

Anti Phishing Block Page

Threat Prevention

Anti Phishing profiles

User-ID

Answer explanation

https://docs.paloaltonetworks.com/pan-os/9-1/pan-os-admin/threat-prevention/prevent-credential-phishing/set-up-credential-phishing-prevention

MULTIPLE CHOICE QUESTION

2 mins • 1 pt

A Security Profile can block or allow traffic at which point?

after it is matched to a Security policy rule that allows or blocks traffic

on either the data plane or the management plane

after it is matched to a Security policy rule that allows traffic

before it is matched to a Security policy rule

MULTIPLE CHOICE QUESTION

2 mins • 1 pt

Which link in the web interface enables a security administrator to view the security policy rules that match new application signatures?

Pre-analyze

Review Policies

Review App Matches

Review Apps

MULTIPLE CHOICE QUESTION

2 mins • 1 pt

Which Security profile would you apply to identify infected hosts on the protected network using DNS traffic?

anti-spyware

URL traffic

vulnerability protection

antivirus

Answer explanation

https://docs.paloaltonetworks.com/pan-os/9-0/pan-os-admin/policy/security-profiles

MULTIPLE CHOICE QUESTION

2 mins • 1 pt

Which plane on a Palo Alto Networks Firewall provides configuration, logging, and reporting functions on a separate processor?

network processing

data

management

security processing

MULTIPLE CHOICE QUESTION

2 mins • 1 pt

A security administrator has configured App-ID updates to be automatically downloaded and installed. The company is currently using an application identified by App-ID as SuperApp_base. On a content update notice, Palo Alto Networks is adding new app signatures labeled SuperApp_chat and SuperApp_download, which will be deployed in 30 days.
Based on the information, how is the SuperApp traffic affected after the 30 days have passed?

All traffic matching the SuperApp_chat, and SuperApp_download is denied because it no longer matches the SuperApp-base application

No impact because the apps were automatically downloaded and installed

No impact because the firewall automatically adds the rules to the App-ID interface

All traffic matching the SuperApp_base, SuperApp_chat, and SuperApp_download is denied until the security administrator approves the applications

Access all questions and much more by creating a free account

Create resources

Host any resource

Get auto-graded reports

Continue with Google

Continue with Email

Continue with Classlink

Continue with Clever

or continue with

Microsoft

Apple

Others

Already have an account?

Similar Resources on Wayground

100 questions

PERSIAPAN CPNS I (49)

Quiz

•

2nd Grade - University

Popular Resources on Wayground

7 questions

History of Valentine's Day

Interactive video

•

4th Grade

15 questions

Fractions on a Number Line

Quiz

•

3rd Grade

20 questions

Equivalent Fractions

Quiz

•

3rd Grade

25 questions

Multiplication Facts

Quiz

•

5th Grade

$fractions$

22 questions

fractions

Quiz

•

3rd Grade

15 questions

Valentine's Day Trivia

Quiz

•

3rd Grade

20 questions

Main Idea and Details

Quiz

•

5th Grade

20 questions

Context Clues

Quiz

•

6th Grade

Discover more resources for Professional Development

15 questions

Fractions on a Number Line

Quiz

•

3rd Grade

20 questions

Equivalent Fractions

Quiz

•

3rd Grade

$fractions$

22 questions

fractions

Quiz

•

3rd Grade

15 questions

Valentine's Day Trivia

Quiz

•

3rd Grade

18 questions

Comparing Fractions with same numerator or denominator

Quiz

•

3rd Grade

15 questions

Valentines Day Trivia

Quiz

•

3rd Grade

12 questions

Presidents' Day

Quiz

•

KG - 5th Grade

10 questions

History and Traditions of Valentine's Day

Interactive video

•

3rd - 6th Grade

PANWCOE

What action will inform end users when their access to Internet content is being restricted?

What must be configured before setting up Credential Phishing Prevention?

https://docs.paloaltonetworks.com/pan-os/9-1/pan-os-admin/threat-prevention/prevent-credential-phishing/set-up-credential-phishing-prevention

A Security Profile can block or allow traffic at which point?

Which link in the web interface enables a security administrator to view the security policy rules that match new application signatures?

Which Security profile would you apply to identify infected hosts on the protected network using DNS traffic?

https://docs.paloaltonetworks.com/pan-os/9-0/pan-os-admin/policy/security-profiles

Which plane on a Palo Alto Networks Firewall provides configuration, logging, and reporting functions on a separate processor?

How many zones can an interface be assigned with a Palo Alto Networks firewall?

https://docs.paloaltonetworks.com/pan-os/8-1/pan-os-web-interface-help/network/network-zones/security-zone-overview

Which option shows the attributes that are selectable when setting up application filters?

https://docs.paloaltonetworks.com/pan-os/7-1/pan-os-web-interface-help/objects/objects-application-filters

Actions can be set for which two items in a URL filtering security profile? (Choose two.)

Access all questions and much more by creating a free account

Similar Resources on Wayground

Popular Resources on Wayground

Discover more resources for Professional Development