Which feature would be useful for preventing traffic from hosting providers that place few restrictions on content, whose services are frequently used by attackers to distribute illegal or unethical material?

• A.Palo Alto Networks Bulletproof IP Addresses
• B.Palo Alto Networks C&C IP Addresses
• C.Palo Alto Networks Known Malicious IP Addresses
• D.Palo Alto Networks High-Risk IP Addresses

Comment: *

Name: *

Email: *

Verification: *

Order the steps needed to create a new security zone with a Palo Alto Networks firewall.

Correct Answer:

Explanation
Step 1 - Select network tab
Step 2 - Select zones from the list of available items
Step 3 - Select Add
Step 4 - Specify Zone Name
Step 5 - Specify Zone Type
Step 6 - Assign interfaces as needed

Comment: *

Name: *

Email: *

Verification: *

Which path in PAN-OS 10.0 displays the list of port-based security policy rules?

• A.Policies> Security> Rule Usage> No App Specified
• B.Policies> Security> Rule Usage> Port only specified
• C.Policies> Security> Rule Usage> Port-based Rules
• D.Policies> Security> Rule Usage> Unused Apps

Comment: *

Name: *

Email: *

Verification: *

Refer to the exhibit. A web server in the DMZ is being mapped to a public address through DNAT.

Which Security policy rule will allow traffic to flow to the web server?

• A.Untrust (any) to Untrust (1.1.1.100), web browsing - Allow
• B.Untrust (any) to Untrust (10.1.1.100), web browsing -Allow
• C.Untrust (any) to DMZ (1.1.1.100), web browsing - Allow
• D.Untrust (any) to DMZ (10.1.1.100), web browsing -Allow

Comment: *

Name: *

Email: *

Verification: *

An administrator is reviewing the Security policy rules shown in the screenshot below.
Which statement is correct about the information displayed?

• A.There are seven Security policy rules on this firewall.
• B.The view Rulebase as Groups is checked.
• C.Eleven rules use the "Infrastructure* tag.
• D.Highlight Unused Rules is checked.

Comment: *

Name: *

Email: *

Verification: *