PSE StrataPreview

Which functionality is available to firewall users with an active Threat Prevention subscription, but no WildFire license?

Which CLI commands allows you to view SD-WAN events such as path selection and path quality measurements?

Which two actions can be taken to enforce protection from brute force attacks in the security policy? (Choose two.)

Which two methods will help avoid Split Brain when running HA in Active/Active mode? (Choose two.)

DRAG DROP -
Match the functions to the appropriate processing engine within the dataplane.
Select and Place:

XYZ Corporation has a legacy environment with asymmetric routing. The customer understands that Palo Alto Networks firewalls can support asymmetric routing with redundancy.
Which two features must be enabled to meet the customer's requirements? (Choose two.)

A prospective customer wants to purchase a next-generation firewall (NGFW) and requires at least 2 million concurrent sessions with a minimum of 10Gbps of throughput with threat detection enabled.

Which tool will help quickly determine the correct size of NGFW for this customer?

Which statement is true about Deviating Devices and metrics?

You have enabled the WildFire ML for PE files in the antivirus profile and have added the profile to the appropriate firewall rules. When you go to Palo Alto
Networks WildFire test av file and attempt to download the test file it is allowed through. In order to verify that the machine learning is working from the command line, which command returns a valid result?

Which action can prevent users from unknowingly downloading potentially malicious file types from the internet?

Access to a business site is blocked by URL Filtering inline machine learning (ML) and considered as a false-positive.
How should the site be made available?

A WildFire subscription is required for which two of the following activities? (Choose two.)

A customer with a fully licensed Palo Alto Networks firewall is concerned about threats based on domain generation algorithms (DGAs).
Which Security profile is used to configure Domain Name Security (DNS) to identify and block previously unknown DGA-based threats in real time?

Which two actions can be configured in an Anti-Spyware profile to address command-and-control (C2) traffic from compromised hosts? (Choose two.)

Which PAN-OS feature should be discussed if a prospect wants to apply Security policy actions to traffic by using tags from their virtual environment?

What are three considerations when deploying User-ID? (Choose three.)

What is an advantage of having WildFire machine learning (ML) capability inline on the firewall?

A potential customer requires an NGFW solution that enables high-throughput, low-latency network security and also inspects the application.
Which aspect of the Palo Alto Networks NGFW capabilities should be highlighted to help address these requirements?

The ability to prevent users from resolving internet protocol (IP) addresses to malicious, grayware, or newly registered domains is provided by which Security service?

What allows verification of machine learning (ML) functionality for WildFire during a proof of concept?

What are three key benefits of the Palo Alto Networks platform approach to security? (Choose three.)

Which PAN-OS feature helps prevent user credential theft?

A customer requires protections and verdicts for PE (portable executable) and ELF (executable and linkable format) as well as integration with products and services can also access the immediate verdicts to coordinate enforcement to prevent successful attacks.
What competitive feature does Palo Alto Networks provide that will address this requirement?

Which deployment option of Advanced URL Filtering (AURLF) would help a prospect that actively uses PAC files?