Which policy set should be used to ensure that a policy is applied just before the default security rules?

• A.Parent device-group post-rulebase
• B.Child device-group post-rulebase
• C.Local Firewall policy
• D.Shared post-rulebase

Comment: *

Name: *

Email: *

Verification: *

In which section of the PAN-OS GUI does an administrator configure URL Filtering profiles?

• A.Policies
• B.Network
• C.Objects
• D.Device

Comment: *

Name: *

Email: *

Verification: *

You have been tasked to configure access to a new web server located in the DMZ Based on the diagram what configuration changes are required in the NGFW virtual router to route traffic from the 10 1 1 0/24 network to 192 168 1 0/24?

• A.Add a route with the destination of 192 168 1 0/24 using interface Eth 1/3 with a next-hop of
  192.168.1.254
• B.Add a route with the destination of 192 168 1 0/24 using interface Eth 1/2 with a next-hop of 172.16.1.2
• C.Add a route with the destination of 192 168 1 0/24 using interface Eth 1/3 with a next-hop of 192.168
  1.10
• D.Add a route with the destination of 192 168 1 0/24 using interface Eth 1/3 with a next-hop of 172.16.1.2

Comment: *

Name: *

Email: *

Verification: *

Which data-plane processor layer of the graphic shown provides uniform matching for spyware and vulnerability exploits on a Palo Alto Networks Firewall?

• A.Network Processing
• B.Security Processing
• C.Signature Matching
• D.Security Matching

Comment: *

Name: *

Email: *

Verification: *

Which two matching criteria are used when creating a Security policy involving NAT? (Choose two.)

• A.Pre-NAT zone
• B.Pre-NAT address
• C.Post-NAT zone
• D.Post-NAT address

Comment: *

Name: *

Email: *

Verification: *