Palo Alto NGFWs enable you to adopt security best practices to minimize opportunities for attack by using the following three policy
... [Show More] types...
Application, User, and Content based policies.
T/F:
Palo Alto NGFWs allow you to automate workflows via integration with administrative tools such as ticketing services, or any system with a RESTful API.
True
What are the three families of Palo Alto NGFWs?
1) VM Series
2) Prisma Access (Cloud Firewall SaaS)
3) Physical Firewalls
Name at least three of the physical Palo Alto NGFW models.
1) PA-220
2) PA800
3) PA-3200
4) PA-5200
5) PA-7000
Older models include: PA-200, PA-500, PA-3000 and PA-5000.
What capabilities does Palo Alto Traps Advanced Endpoint Protection provide?
Advanced Endpoint Protection blocks: exploits, ransomware, malware, and fileless attacks to minimize infected endpoints and servers.
What does AutoFocus provide?
AutoFocus provides instant access to community-based threat data, enhanced with deep context and attribution from the Unit 42 threat research team, saving analysts time and effort.
How often is the WildFire cloud database updated?
Approximately every 5 minutes.
What is Palo Alto WildFire?
WildFire is a cloud based malware analysis and zero day exploit detection feature.
What is Palo Alto Threat Prevention?
Threat Prevention is an IPS feature for detecting network signatures.
What is Palo Alto URL Filtering?
URL Filtering is a feature for categorizing web traffic and preventing phishing attempts.
What is Palo Alto MineMeld?
MineMeld is a threat intelligence aggregation tool for gathering and applying IOCs at the firewall.
What is Palo Alto Cortex Data Lake?
Cortex Data Lake is a tool for collecting and managing vast amounts of security logs.
What is Palo Alto Cortex XDR?
Cortex XDR is a machine learning UBA tool, for detecting post-intrusion activities, such as risky behavior, data exfiltration, or anomalies.
The Palo Alto Networks Security Operating Platform is designed for which three purposes?
A) consume innovations quickly
B) ensure compliance
C) focus on what matters
D) prevent successful cyberattacks
A) consume innovations quickly
C) focus on what matters
D) prevent successful cyberattacks
Which item is not one of the six primary components of the Palo Alto Networks Security Operating Platform?
A) applications (Palo Alto Networks applications, third-party applications, customer applications)
B) Cloud-Delivered Security Services
C) WildFire
D) Cortex and Cortex Data Lake
E) Network Security
F) Advanced Endpoint Protection
G) Cloud Security
C) WildFire
Which cloud-delivered security service provides instant access to community-based threat data?
A) Prisma SaaS
B) AutoFocus
C) Threat 42
D) Cortex XDR
B) AutoFocus
Which cloud-delivered security service provides security for branches and mobile users?
A) MineMeld
B) Cortex XDR
C) AutoFocus
D) Prisma Access
D) Prisma Access
Which Palo Alto Networks Security Operating Platform component provides access to applications from Palo Alto Networks, third parties, and customers?
A) Cloud-Delivered Security Services
B) WildFire
C) Cortex
D) Network Security
E) Advanced Endpoint Protection
C) Cortex
Which Palo Alto Networks firewall feature provides all the following abilities?
• Stops malware, exploits, and ransomware before they can compromise endpoints
• Provides protection while endpoints are online and offline, on network and off
• Coordinates enforcement with network and cloud security to prevent successful attacks
• Detects threats and automates containment to minimize impact
• Includes WildFire cloud-based threat analysis service with your Cortex XDR subscription
• Integrates with the Palo Alto Networks Security Operating Platform
A) Cortex XDR
B) Prisma SaaS
C) URL Filtering
D) WildFire
E) GlobalProtect
F) AutoFocus
A) Cortex XDR
What architecture does Palo Alto use to reduce latency with processing packets?
Single-Pass Parallel Processing (SP3) architecture.
What are the two components of Single-Pass Parallel Processing (SP3) architecture?
1) Single-Pass Software
2) Parallel Processing Hardware
T/F:
Management and Data planes have dedicated hardware resources (CPU, RAM, and storage), making them independent of each other.
True [Show Less]