An organization has recently migrated its infrastructure and configuration to NGFWs, for which Panorama manages the devices. The organization is coming from a
L2-L4 firewall vendor, but wants to use App-ID while identifying policies that are no longer needed.
Which Panorama tool can help this organization?
The correct tool for the organization to identify and optimize policies using App-ID in Panorama is the Policy Optimizer. The Policy Optimizer feature helps transition from traditional port-based rules to application-based rules, which is essential when migrating to Next-Generation Firewalls (NGFWs). It provides insights into unused or redundant policies, allowing the organization to refine and enhance their security policies effectively.
should be C: https://docs.paloaltonetworks.com/pan-os/9-0/pan-os-new-features/app-id-features/policy-optimizer.html
Should be C
Should be C
https://docs.paloaltonetworks.com/pan-os/10-2/pan-os-admin/app-id/security-policy-rule-optimization
You don’t have to upgrade firewalls that Panorama (9.0 or higher) manages to use the Policy Optimizer capabilities. However, to use the Rule Usage capabilities (Monitor Policy Rule Usage), managed firewalls must run PAN-OS 8.1 or later.
answer is C
Option C This new feature identifies port-based rules so you can convert them to application-based rules that allow the traffic or add applications to existing rules without compromising application availability. https://docs.paloaltonetworks.com/pan-os/9-0/pan-os-new-features/app-id-features/policy-optimizer.html
Correct "C" - https://docs.paloaltonetworks.com/pan-os/9-0/pan-os-new-features/app-id-features/policy-optimizer
C is correct
C is correct