Exam (elaborations)
PCNSA - Palo Alto Certification – Qs And As
PCNSA - Palo Alto Certification – Qs And As
[Show more]
Content preview
PCNSA - Palo Alto Certification – Qs And AsPalo Alto NGFWs enable you to adopt security best practices to minimize
opportunities for attack by using the following *three* policy types...
Correct Ans - Application, User, and Content based policies.
T/F:
Palo Alto NGFWs allow you to automate workflows via integration with
administrative tools such as ticketing services, or any system with a
RESTful API. Correct Ans - True
What are the *three* families of Palo Alto NGFWs? Correct Ans - 1)
VM Series
2) Prisma Access (Cloud Firewall SaaS)
3) Physical Firewalls
Name at least *three* of the physical Palo Alto NGFW models. Correct
Ans - 1) PA-220
2) PA800
3) PA-3200
4) PA-5200
5) PA-7000
Older models include: PA-200, PA-500, PA-3000 and PA-5000.
What capabilities does Palo Alto Traps *Advanced Endpoint Protection*
provide? Correct Ans - Advanced Endpoint Protection blocks:
exploits, ransomware, malware, and fileless attacks to minimize infected
endpoints and servers.
What does *AutoFocus* provide? Correct Ans - AutoFocus provides
instant access to community-based threat data, enhanced with deep
context and attribution from the Unit 42 threat research team, saving
analysts time and effort.
How often is the WildFire cloud database updated? Correct Ans -
Approximately every *5* minutes.
,What is Palo Alto *WildFire*? Correct Ans - WildFire is a cloud
based malware analysis and zero day exploit detection feature.
What is Palo Alto *Threat Prevention*? Correct Ans - Threat
Prevention is an IPS feature for detecting network signatures.
What is Palo Alto *URL Filtering*? Correct Ans - URL Filtering is a
feature for categorizing web traffic and preventing phishing attempts.
What is Palo Alto *MineMeld*? Correct Ans - MineMeld is a threat
intelligence aggregation tool for gathering and applying IOCs at the
firewall.
What is Palo Alto *Cortex Data Lake*? Correct Ans - Cortex Data
Lake is a tool for collecting and managing vast amounts of security logs.
What is Palo Alto *Cortex XDR*? Correct Ans - Cortex XDR is a
machine learning *UBA tool*, for detecting post-intrusion activities, such as
risky behavior, data exfiltration, or anomalies.
The Palo Alto Networks Security Operating Platform is designed for which
*three* purposes?
A) consume innovations quickly
B) ensure compliance
C) focus on what matters
D) prevent successful cyberattacks Correct Ans - *A)* consume
innovations quickly
*C)* focus on what matters
*D)* prevent successful cyberattacks
Which item is not one of the six primary components of the Palo Alto
Networks Security Operating Platform?
A) applications (Palo Alto Networks applications, third-party applications,
customer applications)
B) Cloud-Delivered Security Services
C) WildFire
D) Cortex and Cortex Data Lake
,E) Network Security
F) Advanced Endpoint Protection
G) Cloud Security Correct Ans - *C)* WildFire
Which cloud-delivered security service provides instant access to
community-based threat data?
A) Prisma SaaS
B) AutoFocus
C) Threat 42
D) Cortex XDR Correct Ans - B) AutoFocus
Which cloud-delivered security service provides security for branches and
mobile users?
A) MineMeld
B) Cortex XDR
C) AutoFocus
D) Prisma Access Correct Ans - *D)* Prisma Access
Which Palo Alto Networks Security Operating Platform component
provides *access to applications* from Palo Alto Networks, third parties,
and customers?
A) Cloud-Delivered Security Services
B) WildFire
C) Cortex
D) Network Security
E) Advanced Endpoint Protection Correct Ans - C) Cortex
Which Palo Alto Networks firewall feature provides all the following
abilities?
• Stops malware, exploits, and ransomware before they can compromise
endpoints
• Provides protection while endpoints are online and offline, on network
and off
• Coordinates enforcement with network and cloud security to prevent
successful attacks
• Detects threats and automates containment to minimize impact
, • Includes WildFire cloud-based threat analysis service with your Cortex
XDR subscription
• Integrates with the Palo Alto Networks Security Operating Platform
A) Cortex XDR
B) Prisma SaaS
C) URL Filtering
D) WildFire
E) GlobalProtect
F) AutoFocus Correct Ans - *A)* Cortex XDR
What architecture does Palo Alto use to reduce latency with processing
packets? Correct Ans - Single-Pass Parallel Processing (SP3)
architecture.
What are the *two* components of Single-Pass Parallel Processing (SP3)
architecture? Correct Ans - 1) Single-Pass Software
2) Parallel Processing Hardware
T/F:
Management and Data planes have dedicated hardware resources (CPU,
RAM, and storage), making them independent of each other. Correct
Ans - True
T/F:
When administrator is running a very processor-intensive report, he/she
may notice the firewall has decreased ability to process packets.
Correct Ans - False
The firewall would not be affected by this reporting job, because there is
separation of the data and control (management) planes.
What are some of the *management features* the control plane provides
the firewall with? Correct Ans - 1) Firewall configuration
2) Logging
3) Reporting
What are some of the *data processing* features the data plane provides
the firewall with? Correct Ans - 1) Signature matching
The benefits of buying summaries with Stuvia:
Guaranteed quality through customer reviews
Stuvia customers have reviewed more than 700,000 summaries. This how you know that you are buying the best documents.
Quick and easy check-out
You can quickly pay through credit card or Stuvia-credit for the summaries. There is no membership needed.
Focus on what matters
Your fellow students write the study notes themselves, which is why the documents are always reliable and up-to-date. This ensures you quickly get to the core!
Frequently asked questions
What do I get when I buy this document?
You get a PDF, available immediately after your purchase. The purchased document is accessible anytime, anywhere and indefinitely through your profile.
Satisfaction guarantee: how does it work?
Our satisfaction guarantee ensures that you always find a study document that suits you well. You fill out a form, and our customer service team takes care of the rest.
Who am I buying these notes from?
Stuvia is a marketplace, so you are not buying this document from us, but from seller Studyhall. Stuvia facilitates payment to the seller.
Will I be stuck with a subscription?
No, you only buy these notes for CA$34.78. You're not tied to anything after your purchase.
Can Stuvia be trusted?
4.6 stars on Google & Trustpilot (+1000 reviews)
74735 documents were sold in the last 30 days
Founded in 2010, the go-to place to buy study notes for 14 years now