PSE-STRATA Exam Questions

What two types of traffic should you exclude from a decryption policy? (Choose two.)

What three Tabs are available in the Detailed Device Health on Panorama for hardware-based firewalls? (Choose three.)

What component is needed if there is a large scale deployment of Next Generation Firewalls with multiple Panorama Management Servers?

A customer is adopting Microsoft Office 365 but is concerned about the potential security exposure that such a move could mean. The security analyst suggests using Aperture and the...

Which license is required to receive weekly dynamic updates to the correlation objects on the firewall and Panorama?

What two advantages of the DNS Sinkholing feature? (Choose two)

Which Palo Alto Networks security platform component should an administrator use to extend policies to remote users are not connecting to the internet from behind a firewall?

A specific URL keeps appearing in URL filtering log entries, it was blocked successfully, but the administrator would like to investigate further. In which two ways would AutoFocus...

How do Highly Suspicious artifacts in-AutoFocus help identify when an unknown, potential zero- day, targeted attack occur to allow one to adjust the security posture?

What is the HA limitation specific to the PA-200 appliance?

How many recursion levels are supported for compressed files in PAN-OS 8.0?

A customer is seeing an increase in the number of malicious files coming in from undetectable sources in their network. These files include doc and .pdf file types. The customer be...

Which two components must to be configured within User-ID on a new firewall that has been implemented? (Choose two.)

When a customer creates a new SLR report, what is the first step in generating a proper SLR report once logged in to the Partner Portal?

Which three items contain information about Command and Control (C&C) hosts? (Choose three.)

Which option is required to activate/retrieve a Device Management License on the M.100 Appliance after the Auth Codes have been activated on the Palo Alto Networks Support Site?

What are three considerations when deploying User-ID. (Choose three.)

A price sensitive customer wants to prevent attacks on a windows 2008 Virtual Server. The server will max out at 100Mbps but needs to have 45,000 sessions to connect to multiple ho...

Which variable is used to regulate the rate of file submission to WildFire?

Which four steps of the cyberattack lifecycle dose the Palo Alto Networks platform present? (Choose four)

Which certificate can be used to ensure that traffic coming from a specific server remains encrypted?

A client chooses to not block uncategorized websites. Which two additions should be made to help provide some protection? (Choose two.)

Which configuration creates the most comprehensive "best-practice" Anti Spyware profile to prevent command and Control traffic?

Given the following network diagram, an administrator is considering the use of Windows Log Forwarding and Global Catalog servers for User-ID implementation. What are two potential...

What is a best practice when configuring a security policy to completely block a specific application?

What is the recommended way to ensure that firewalls have the most current set of signatures for up-to-date protection?

XYZ Corporation has a legacy environment with asymmetric routing. The customer understands that Palo Alto Networks firewalls can support asymmetric routing with redundancy. Which t...

Which two actions can be configured in an Anti-Spyware profile to address command-and-control (C2) traffic from compromised hosts? (Choose two.)

How often are regularly scheduled update for the Anti-virus Application, Threats, and Wildfire subscription databases made available by Palo Alto Networks in PAN-OS 8.0?

Which three signature-based Threat Prevention features of the firewall are informed by intelligence from the Threat Intelligence Cloud? (Choose three.)

Which design objective could be satisfied by vsys functionality?

Which functionality is available to firewall users with an active Threat Prevention subscription, but no WildFire license?

How does SSL Forward Proxy decryption work?

Which three actions should be taken before deploying a firewall evaluation unit in the customer's environment? (Choose three.)

What are three sources of malware sample data for the Palo Alto Networks Threat Intelligence Cloud? (Choose three.)

What are three best practices for running an Ultimate Test Drive (UTD)? (Choose three.)

An endpoint, inside an organization, is infected with known malware. The malware attempts to make a command and control connection to a C&C server via the destination IP address. W...

A prospective customer was the victim of a zero-day attack that compromised specific employees, who then became unwitting attack vectors. The customer does not want that to happen...

Which two tabs in Panorama can be used to identify templates to define a common base configuration? (Choose two)

Which profile or policy should be applied to protect against port scans from the internet?

Which three application options can be selected in the security policy rule? (Choose three.)

A network covers three geographical areas: Americas, Europe (EMEA), and Asia (APAC). The APAC segment of the network consists of nine HA pairs of PA-3060 firewalls, generating a co...

The botnet report displays a confidence score of 1 to 5 indicating the likelihood of a botnet infection. Which three sources are used by the firewall as the basis of this score? (C...

Which two features are found in a next-generation firewall but are absent in a legacy firewall product? (Choose two)

What are five benefits of Palo Alto Networks NGFWs (Next Generation Firewalls)? (Select the five correct answers.)

Which two statements are correct for the out-of-box configuration for Palo Alto Networks NGFWs? (Choose two)

When a malware-infected host attempts to resolve a known command-and-control server, the traffic matches a security policy with DNS sinkhole enabled, generating a traffic log. What...

Which two interface types can be used when configuring GlobalProtect Portal?(Choose two)

To connect the Palo Alto Networks firewall to AutoFocus, which setting must be enabled?

Which two methods can be used to verify firewall connectivity to AutoFocus? (Choose two.)