Palo Alto Networks NetSec-Analyst Exam Practice Test Instant Access

Question 1

What can be achieved by selecting a policy target prior to pushing policy rules from Panorama?

ADoing so limits the templates that receive the policy rules

BDoing so provides audit information prior to making changes for selected policy rules

CYou can specify the firewalls m a device group to which to push policy rules

DYou specify the location as pre can - or post-rules to push policy rules

Answer : C

Question 2

Which action would an administrator take to ensure that a service object will be available only to the selected device group?

Acreate the service object in the specific template

Buncheck the shared option

Censure that disable override is selected

Densure that disable override is cleared

Answer : D

https://docs.paloaltonetworks.com/panorama/9-0/panorama-admin/manage-firewalls/manage-device-groups/create-objects-for-use-in-shared-or-device-group-policy

Question 3

Which set of options is available for detailed logs when building a custom report on a Palo Alto Networks NGFW?

ATraffic, User-ID, URL

BTraffic, threat, data filtering, User-ID

CGlobalProtect, traffic, application statistics

DThreat, GlobalProtect, application statistics, WildFire submissions

Answer : B

When building a custom report on a Palo Alto Networks NGFW, you can select detailed logs that provide specific insights into various aspects of firewall activity. The available options for detailed logs typically include:

Traffic logs: These provide information on the network traffic passing through the firewall.

Threat logs: These logs capture data related to identified security threats, such as malware or intrusion attempts.

Data filtering logs: These logs capture events related to data filtering policies, such as preventing the transfer of sensitive data.

User-ID logs: These logs associate user identities with the traffic and activities observed on the firewall, enabling user-based policy enforcement.

Question 4

During the packet flow process, which two processes are performed in application identification? (Choose two.)

Apattern based application identification

Bapplication override policy match

Csession application identified

Dapplication changed from content inspection

Answer : A, B

Question 5

An administrator is reviewing another administrator s Security policy log settings

Which log setting configuration is consistent with best practices tor normal traffic?

ALog at Session Start and Log at Session End both enabled

BLog at Session Start disabled Log at Session End enabled

CLog at Session Start enabled Log at Session End disabled

DLog at Session Start and Log at Session End both disabled

Answer : B

Question 6

What in the minimum frequency for which you can configure the firewall too check for new wildfire antivirus signatures?

Aevery 5 minutes

Bevery 1 minute

Cevery 24 hours

Devery 30 minutes

Answer : B

Question 7

How frequently can wildfire updates be made available to firewalls?

Aevery 15 minutes

Bevery 30 minutes

Cevery 60 minutes

Devery 5 minutes

Answer : D

Palo Alto Networks Network Security Analyst NetSec-Analyst Exam Practice Test