A firewall is being attacked with a port scan. Which component can prevent this attack?
A. Anti-Spyware
B. DoS Protection
C. Zone Protection
D. Vulnerability Protection
正解:C
解説: (Pass4Test メンバーにのみ表示されます)
質問 2:
HOTSPOT
Match each type of report provided by the firewall with its description. Answer options may be used more than once or not at all.
正解:
Explanation:
PDF Summary Reports - Reports that combine up to 18 custom or predefined reports from the Threat, Application, Traffic, URL Filtering Categories into one document. Report Groups - Reports the combine other custom and predefined reports into a single file to be emailed to one or more recipients. Custom Reports - Reports created by an administrator that filter on conditions and columns User or Groups Activity Reports - Reports on the application use and URL activity for a specific user or a group
Reference: https://www.paloaltonetworks.com/content/dam/paloaltonetworkscom/en_US/assets/pdf/framemaker/61/panorama/Panorama_AdminGuide/section_6.pdf page 151
質問 3:
Which three engines are built into the Single-Pass Parallel Processing Architecture? Choose 3 answers
A. Application Identification (App-ID)
B. Threat Identification (Threat-ID)
C. Group Identification (Group-ID)
D. User Identification (User-ID)
E. Content Identification (Content-ID)
正解:A,D,E
解説: (Pass4Test メンバーにのみ表示されます)
質問 4:
By default, all PA-5060 syslog data is forwarded out the Management interface. What needs to be configured in order to send syslog data out of a different interface?
A. Configure Service Route Only for Threats and URL Filtering, and the traffic will use the same route.
B. Configure an Interface Management Profile and apply it to the interface that the syslogs will be sent through.
C. Configure a Service Route for the Syslog service to use a dataplane interface.
D. Create a Log-Forwarding Profile that points to the device that will receive the syslogs.
正解:C
解説: (Pass4Test メンバーにのみ表示されます)
質問 5:
What is a prerequisite for configuring a pair of Palo Alto Networks firewalls in an Active/Passive High Availability (HA) pair?
A. The HA interfaces must be directly connected to each other.
B. The management interfaces must be on the same network.
C. The firewalls must have the same set of licenses.
D. The peer HA1 IP address must be the same on both firewalls.
正解:C
解説: (Pass4Test メンバーにのみ表示されます)
質問 6:
A Palo Alto Networks firewall is being targeted by an NTP Amplification attack and is being flooded with tens of thousands of bogus UDP connections per second to a single destination IP address and port.
Which option, when enabled with the correct threshold, would mitigate this attack without dropping legitimate traffic to other hosts inside the network?
A. QoS Policy to throttle traffic below maximum limit
B. Security Policy rule to deny traffic to the IP address and port that is under attack
C. Zone Protection Policy with UDP Flood Protection
D. Classified DoS Protection Policy using destination IP only with a Protect action
正解:D
解説: (Pass4Test メンバーにのみ表示されます)