NETSEC-ANALYST Exam Questions

What is an advantage for using application tags?

What are two predefined AntiSpyware profiles? (Choose two.)

What are three methods of mapping usernames to IP addresses? (Choose three.)

Config logs display entries for which kind of firewall changes?

A Heatmap provides an adoption rate for which three features? (Choose three.)

The data plane provides which two data processing features of the firewall? (Choose two.)

In path monitoring, what is used to monitor remote network devices?

How often are new and modified threat signatures and modified applications signatures published?

The External zone type is used to pass traffic between which type of objects?

What is the default metric value of static routes?

The Port Mapping user mapping method can monitor which two types of environments? (Choose two.)

Which Security profile can you apply to protect against malware such as worms and Trojans?

Which two settings allow you to restrict access to the management interface? (Choose two )

What is a prerequisite before enabling an administrative account which relies on a local firewall user database?

What can be achieved by selecting a policy target prior to pushing policy rules from Panorama?

What is the correct process tor creating a custom URL category?

An administrator would like to silently drop traffic from the internet to a ftp server. Which Security policy action should the administrator select?

What is the main function of the Test Policy Match function?

Which objects would be useful for combining several services that are often defined together?

Which type of address object is `10.5.1.1/0.127.248.2`?

A Security Profile can block or allow traffic at which point?

Which three types of authentication services can be used to authenticate user traffic flowing through the firewalls data plane? (Choose three )

Which dynamic update type includes updated anti-spyware signatures?

Which URL Filtering Profile action does not generate a log entry when a user attempts to access a URL?

An administrator is reviewing another administrator s Security policy log settings. Which log setting configuration is consistent with best practices tor normal traffic?

What is considered best practice with regards to committing configuration changes?

An administrator wants to prevent users from submitting corporate credentials in a phishing attack. Which Security profile should be applied?

Which type of administrator account cannot be used to authenticate user traffic flowing through the firewall's data plane?

Starting with PAN-OS version 9.1, which new type of object is supported for use within the User field of a Security policy rule?

How does an administrator schedule an Applications and Threats dynamic update while delaying installation of the update for a certain amount of time?

Which three configuration settings are required on a Palo Alto Network firewall management interface? (Choose three.)

At which point in the App-ID update process can you determine if an existing policy rule is affected by an App-ID update?

You receive notification about a new malware that infects hosts. An infection results in the infected host attempting to contact a command-and-control server. Which Security Profil...

Which statement is true regarding a Best Practice Assessment?

The PowerBall Lottery has reached an unusually high value this week. Your company has decided to raise morale by allowing employees to access the PowerBall Lottery website access a...

In a Security policy, what is the quickest way to reset all policy rule hit counters to zero?

Based on the Security policy rules shown, SSH will be allowed on which port?

You receive notification about new malware that is being used to attack hosts. The malware exploits a software bug in common application. Which Security Profile detects and blocks...

Palo Alto Networks firewall architecture accelerates content inspection performance while minimizing latency using which two components? (Choose two.)

An administrator is reviewing another administrator's Security policy log settings. Which log setting configuration is consistent with best practices for normal traffic?

Which Security profile would you apply to identify infected hosts on the protected network using DNS traffic?

Given the topology, which zone type should zone A and zone B to be configured with?

Assume a custom URL Category Object of "NO-FILES" has been created to identify a specific website? How can file uploading/downloading be restricted for the website while permitting...

Which URL Filtering profile action would you set to allow users the option to access a site only if they provide a URL admin password?

How are Application Filters or Application Groups used in firewall policy?

Which tab would an administrator click to create an address object?

An administrator wishes to follow best practices for logging traffic that traverses the firewall. Which log setting is correct?

Which two firewall components enable you to configure SYN flood protection thresholds? (Choose two.)

An administrator would like to see the traffic that matches the interzone-default rule in the traffic logs. What is the correct process to enable this logging?

The Palo Alto Networks NGFW was configured with a single virtual router named VR-1. What changes are required on VR-1 to route traffic between two interfaces on the NGFW?