Palo Alto Next Generation Firewall Administration Quiz Questions and Answers

Which User-ID mapping method should be used for an environment with clients that do not authenticate to Windows Active Directory?

Answer :
  • Captive Portal

An administrator needs to allow users to use their own office applications. How should the administrator configure the firewall to allow multiple applications in a dynamic environment?

Answer :
  • Create an Application Group and add business-systems to it.

Which statement is true regarding a Best Practice Assessment?

Answer :
  • It provides a percentage of adoption for each assessment data.

When creating a Source NAT policy, which entry in the Translated Packet tab will display the options Dynamic IP and Port, Dynamic, Static IP, and None?

Answer :
  • Translation Type

Which interface does not require a MAC or IP address?

Answer :
  • Virtual Wire

A company moved its old port-based firewall to a new Palo Alto Networks NGFW 60 days ago. Which utility should the company use to identify out-of-date or unused rules on the firewall?

Answer :
  • Rule Usage Filter > Hit Count > Unused in 90 days

Recently changes were made to the firewall to optimize the policies and the security team wants to see if those changes are helping. What is the quickest way to reset the hit counter to zero in all the security policy rules?

Answer :
  • Use the Reset Rule Hit Counter > All Rules option.

Which User-ID agent would be appropriate in a network with multiple WAN links, limited network bandwidth, and limited firewall management plane resources?

Answer :
  • Windows-based agent deployed on the internal network.

In which stage of the Cyber-Attack Lifecycle would the attacker inject a PDF file within an email?

Answer :
  • Weaponization

Based on the security policy rules shown, ssh will be allowed on which port?

Answer :
  • 22