最新的Palo Alto Networks Security Operations Generalist - SecOps-Generalist免費考試真題
A user's endpoint is infected with malware that attempts to contact its command-and-control (C2) server using a newly generated domain name (Domain Generation Algorithm - DGA). The user's traffic passes through a Palo Alto Networks NGFW with the Advanced DNS Security subscription enabled. The DNS query for the malicious domain is sent to an external DNS server via the firewall. How does Advanced DNS Security MOST likely contribute to detecting and preventing this C2 communication attempt? (Select all that apply)
正確答案: A,C,E
說明:(僅 Fast2test 成員可見)
A branch office using Prisma SD-WAN with two internet links (ISPI and ISP2) is configured with a Path Policy for VoIP traffic. The policy is set to prioritize the path with the 'Best Quality' based on latency, jitter, and packet loss thresholds defined in an SLA profile. What happens in Prisma SD-WAN if the Path Monitoring feature detects that the link currently carrying VoIP traffic degrades and no longer meets the defined SLA thresholds?
正確答案: D
說明:(僅 Fast2test 成員可見)
An organization has several distinct network segments in its on-premises data center: User VLANs, Server VLANs (Production), and a DMZ. They have deployed a Palo Alto Networks PA-Series firewall as an internal segmentation firewall. Which core firewall concept is used to define these segments logically and enable security policy enforcement for traffic flowing between them?
正確答案: A
說明:(僅 Fast2test 成員可見)
A security administrator is reviewing logs on a Palo Alto Networks NGFW that is performing SSH Proxy decryption for traffic to internal Linux servers. They find log entries categorized under 'file-transfer' and 'threat' associated with the 'ssh' application. What must be true for the firewall to generate such detailed logs for activity occurring within an encrypted SSH tunnel?
正確答案: B
說明:(僅 Fast2test 成員可見)
A company wants to implement a Zero Trust policy where access to the internal development code repository application is only allowed for members of the 'DevTeam' Active Directory group if they are connecting from a device identified as a 'Company Laptop' and the device posture is compliant (e.g., antivirus updated, disk encrypted), as verified by GlobalProtect HIP. Which specific Palo Alto Networks features and policy configurations are essential to achieve this granular control on a Strata NGFW or Prisma Access?
正確答案: A,B,C,E
說明:(僅 Fast2test 成員可見)
An organization is concerned about attackers exploiting known vulnerabilities in their web servers and client applications. They have deployed Palo Alto Networks NGFWs with an Advanced Threat Prevention subscription. Which specific security profiles, enhanced by the Advanced Threat Prevention CDSS, are primarily responsible for protecting against vulnerability exploits and preventing spyware/command-and-control communications?
正確答案: C
說明:(僅 Fast2test 成員可見)
In a PAN-OS SD-WAN deployment, how does the firewall primarily leverage App-ID information when making real-time path selection decisions for application traffic?
正確答案: A
說明:(僅 Fast2test 成員可見)
A company is deploying Prisma Access to provide secure internet access and access to internal resources for its branch offices. Each branch office has a router or firewall capable of establishing an IPSec VPN tunnel. Which component of Prisma Access is specifically designed to receive these IPSec VPN connections from branch office locations and provide access to the Prisma Access security capabilities and service connections?
正確答案: D
說明:(僅 Fast2test 成員可見)
A company is using Palo Alto Networks GlobalProtect to provide secure remote access for its mobile workforce. With a Premium GlobalProtect license, they want to gain deeper visibility into the security posture of endpoints connecting to the network and enforce policy based on endpoint compliance. Which feature, part of the Premium GlobalProtect offering, collects endpoint attributes and sends them to the firewall to enable compliance-based access control?
正確答案: B
說明:(僅 Fast2test 成員可見)
In a hybrid cloud deployment leveraging Palo Alto Networks VM-Series firewalls for internal segmentation within a public cloud VPC and PA-Series firewalls for on-premises data center segmentation, how do Security Zones contribute to maintaining a consistent security posture and policy enforcement across these different environments?
正確答案: C,D,E
說明:(僅 Fast2test 成員可見)
Which action types are typically available for configuration within the Vulnerability Protection profile on a Palo Alto Networks NGFW to respond to detected exploit attempts? (Select all that apply)
正確答案: A,B,D
說明:(僅 Fast2test 成員可見)
An administrator is reviewing the security policy for remote users connecting via GlobalProtect to access internal resources. They notice a broad rule allowing 'any' application from the 'VPN-Zone' to the 'Servers' zone. To implement a more secure 'least privilege' model, the administrator wants to refine this policy. Which tuning action is MOST effective for improving the security posture based on App-Ld capabilities?
正確答案: D
說明:(僅 Fast2test 成員可見)