A network administrator troubleshoots a VPN issue and suspects an IKE Crypto mismatch between peers. Where can the administrator find the corresponding logs after running a test command to initiate the VPN?A . Configuration logs B. System logs C. Traffic logs D. Tunnel Inspection logs View Answer Answer: B...
Without changing the existing access to the management interface, how can the engineer fulfill this request?
An engineer needs to permit XML API access to a firewall for automation on a network segment that is routed through a Layer 3 subinterface on a Palo Alto Networks firewall. However, this network segment cannot access the dedicated management interface due to the Security policy. Without changing the existing access to the management...
Which three firewall multi-factor authentication factors are supported by PAN-OS? (Choose three)
Which three firewall multi-factor authentication factors are supported by PAN-OS? (Choose three)A . SSH key B. User logon C. Short message service D. One-Time Password E. Push View Answer Answer: D...
Which application will be used to identify traffic traversing the firewall?
An administrator creates a custom application containing Layer 7 signatures. The latest application and threat dynamic update is downloaded to the same firewall. The update contains an application that matches the same traffic signatures as the custom application. Which application will be used to identify traffic traversing the firewall?A . Custom application B. Unknown...
Given the following snippet of a WildFire submission log. did the end-user get access to the requested information and why or why not?
Given the following snippet of a WildFire submission log. did the end-user get access to the requested information and why or why not? A . Yes. because the action is set to "allow ” B. No because WildFire categorized a file with the verdict "malicious" C. Yes because the action is set to "alert"...
An engineer is troubleshooting traffic routing through the virtual router. The firewall uses multiple routing protocols, and the engineer is trying to determine routing priority
DRAG DROP An engineer is troubleshooting traffic routing through the virtual router. The firewall uses multiple routing protocols, and the engineer is trying to determine routing priority. Match the default Administrative Distances for each routing protocol. View Answer Answer: Explanation: ✑ Static ―Range is 10-240; default is 10. ✑ OSPF Internal ―Range is 10-240;...
What are two common reasons to use a "No Decrypt" action to exclude traffic from SSL decryption? (Choose two.)
What are two common reasons to use a "No Decrypt" action to exclude traffic from SSL decryption? (Choose two.)A . the website matches a category that is not allowed for most users B. the website matches a high-risk category C. the web server requires mutual authentication D. the website matches a sensitive category View...
Which two actions would be part of an automatic solution that would block sites with untrusted certificates without enabling SSL Forward Proxy? (Choose two.)
Which two actions would be part of an automatic solution that would block sites with untrusted certificates without enabling SSL Forward Proxy? (Choose two.)A . Create a no-decrypt Decryption Policy rule. B. Configure an EDL to pull IP addresses of known sites resolved from a CRL. C. Create a Dynamic Address Group for untrusted...
Which three file types does WildFire inline ML analyze?
An administrator wants to enable WildFire inline machine learning. Which three file types does WildFire inline ML analyze? (Choose three.)A . MS Office B. ELF C. APK D. VBscripts E. Powershell scripts View Answer Answer: C, D, E...
Which statement is true regarding a Best Practice Assessment?
Which statement is true regarding a Best Practice Assessment?A . It shows how your current configuration compares to Palo Alto Networks recommendations B. It runs only on firewalls C. When guided by an authorized sales engineer, it helps determine the areas of greatest risk where you should focus prevention activities. D. It provides a...