Palo Alto Networks ACE Practice Exam Questions & Answers

Question 6 of 172

Which of the following CANNOT use the source user as a match criterion?

Question 7 of 172

Which statement below is TRUE?

A.

PANOS uses BrightCloud as its default URL Filtering database, but also supports PANDB.

B.

PANOS uses PANDB for URL Filtering, replacing BrightCloud.

C.

PANOS uses BrightCloud for URL Filtering, replacing PANDB.

D.

PANOS uses PANDB as the default URL Filtering database, but also supports BrightCloud.

Question 8 of 172

When configuring a Decryption Policy rule, which option allows a firewall administrator to control SSHv2 tunneling in policies by specifying the SSHtunnel AppID?

A.

SSH Proxy

B.

SSL Forward Proxy

C.

SSL Inbound Inspection

D.

SSL Reverse Proxy

Question 9 of 172

What are two sources of information for determining whether the firewall has been successful in communicating with an external UserID Agent?

A.

System Logs and the indicator light under the UserID Agent settings in the firewall.

B.

Traffic Logs and Authentication Logs.

C.

System Logs and an indicator light on the chassis.

D.

System Logs and Authentication Logs.

Question 10 of 172

What Security Profile type must be configured to send files to the WildFire cloud, and with what choices for the action setting?

A.

A File Blocking profile with possible actions of "Forward" or "Continue and Forward".

B.

A Data Filtering profile with possible actions of "Forward" or "Continue and Forward".

C.

A Vulnerability Protection profile with the possible action of "Forward".

D.

A URL Filtering profile with the possible action of "Forward".