This page was exported from Exams Labs Braindumps [ http://blog.examslabs.com ] Export date:Thu Dec 26 2:04:53 2024 / +0000 GMT ___________________________________________________ Title: Get Started PSE-PrismaCloud Exam [year] Dumps Palo Alto Networks PDF Questions [Q17-Q37] --------------------------------------------------- Get Started: PSE-PrismaCloud Exam [year] Dumps Palo Alto Networks PDF Questions PSE-PrismaCloud Premium Exam Engine pdf Download NO.17 What is the default capacity license of a VM-Series NGFW being deployed from the Google Cloud Platform Marketplace?  VM-GCP  VM-100  VM-500  VM-300 Explanationhttps://docs.paloaltonetworks.com/vm-series/8-1/vm-series-deployment/set-up-the-vm-series-firewall-on-googleNO.18 What are two examples of Amazon Web Services logging services? (Choose two.)  CloudLog  CloudEvent  CloudWatch  CIoudTrail NO.19 Which RQL string monitors all traffic from the Internet and Suspicious IPs destined for your Amazon Web Services databases?  network where source.publicnetwork IN (‘Suspicious IPs’) and dest.resource IN (resource where role IN (‘AWS RDS’, ‘Database’))  network where source.publicnetwork IN (‘Suspicious IPs’, ‘Internet IPs’) and dest.resource IN (resource where role IN (‘LDAP’))  network where dest.resource IN (resource where role = ‘Database’}  network where source.publicnetwork IN (‘Suspicious IPs’, ‘Internet IPs’) and dest resource IN (resource where role IN (‘AWS RDS’. ‘Database’)) NO.20 What is the scope of the Amazon Web Services 1AM Service?  zonal  VPC  global  regional NO.21 Match the query type with its corresponding search NO.22 The Microsoft Azure virtual network gateway supports which two site-to-site connectivity options? (Choose two.)  Direct Connect  Fast Connect  IPsecVPN  ExpressRoute Explanationhttps://docs.microsoft.com/en-us/azure/vpn-gateway/vpn-gateway-howto-site-to-site-resource-manager-portalNO.23 Which Prisma Public Cloud policy alerts administrators to unusual user activity?  Anomaly  Audit Event  Network  Configuration Explanationhttps://docs.paloaltonetworks.com/prisma/prisma-cloud/prisma-cloud-admin/prisma-cloud-policies/anomaly-poliNO.24 Which two statements are true about CloudFormation? (Choose two.)  CloudFormation is a procedural configuration management tool.  CloudFormation templates can be used on both Amazon Web Services and Microsoft Azure  CloudFormation templates can be written in JSON or YAML  CloudFormation is a declarative orchestration tool. NO.25 What configuration on AWS is required in order for VM-Series to forward traffic between its network interfaces?  Both Source and Destination Checks are disabled  Both Source and Destination Checks are enabled  Source Check is disabled and Destination Check is enabled  Source Check is enabled and Destination Check is disabled Explanationhttps://docs.paloaltonetworks.com/vm-series/9-0/vm-series-deployment/set-up-the-vm-series-firewall-on-aws/usNO.26 What are three examples of outbound traffic flow? (Choose three.)  issue yum update command on an instance inside Amazon Web Services  Microsoft Windows inside Azure requesting a security patch  web server inside Amazon Web Services receiving web requests from internet  issue apt-get install command on an instance inside Amazon Web Services  outgoing Prisma Public Cloud API calls NO.27 Palo Alto Networks recommends which two options for outbound HA design in Amazon Web Services using VM-Series NGFW? (Choose two.)  iLB-as-next-hop  transit gateway and security VPC with VM-Series  traditional active/standby HA on VM-Series  transit VPC and security VPC with VM-Series NO.28 Match the query type with its corresponding search Explanationnetwork where,event where,config whereNO.29 Which RQL string returns a list of all Azure virtual machines that are not currently running?  config where api.name = ‘azure-vm-list’ AND json.rule = powerState = “off’  config where api.name = ‘azure-vm-list’ AND json.rule = powerState does not contain “running”  config where api.name = ‘azure-vm-list’ AND json.rule = powerState = “running”  config where api.name = ‘azure-vm-list’ AND json.rule = powerState contains “running” NO.30 An Azure VNet has the IP network 10.0.0.0/16 with two subnets, 10.0.1.0/24 (used for web servers) and10.0.2.0/24 (used for database servers). Which is a valid IP address to manage the VM-Series NGFW?  10.0.1.254  10.0.2.1  10.0.3.255  10.0.3.1 NO.31 Match the logging service with its cloud provider. NO.32 An administrator has deployed an AWS transit gateway and used multiple VPC spokes to segregate a multi-tier application. The administrator also created a security VPC with multiple VM-Series NGFWs in an active/active deployment model via ECMP using Amazon Web Services VPN-based attachments.What must be configured on the firewall to avoid asymmetric routing?  source address translation  destination address translation  port address translation  source and destination address translation NO.33 A customer CSO has asked you to demonstrate how to identify all “Amazon RDS” resources deployed and the region that they are deployed in. What are two ways that Prisma Public Cloud can show the relevant information?(Choose two.)  Generate a compliance report from the Compliance dashboard  Write an RQL query from the “Investigate” tab.  Configure an Inventory report from the “Alerts” tab  Open the Asset dashboard, filter on Amazon Web Services, and click “Amazon RDS” resources. NO.34 A customer CSO has asked you to demonstrate how to identify all “Amazon RDS” resources deployed and the region that they are deployed in. What are two ways that Prisma Public Cloud can show the relevant information?(Choose two.)  Generate a compliance report from the Compliance dashboard  Write an RQL query from the “Investigate” tab.  Configure an Inventory report from the “Alerts” tab  Open the Asset dashboard, filter on Amazon Web Services, and click “Amazon RDS” resources. NO.35 When protecting against attempts to exploit client-side and server-side vulnerabilities, what is the Palo Alto Networks best practice when using NGFW VulnerabilityProtection Profiles?  Use the default Vulnerability Protection Profile to protect clients from all known critical, high, and medium-severity threats  Clone the predefined Strict Profile, with packet capture settings disabled  Use the default Vulnerability Protection Profile to protect servers from all known critical, high, and medium-severity threats  Clone the predefined Strict Profile, with packet capture settings enabled NO.36 How is license utilization displayed within the Prisma Public Cloud interface?  navigate to the CLI and run show license command  navigate to General > Licensing  navigate to Dashboard > Asset Inventory  navigate to Settings (via the gear icon) > Licensing NO.37 Which RQL string using network query attributes returns all traffic destined for Internet or for Suspicious IPs that also exceeds 1GB?  network where publicnetwork = (‘Internet IPs’, ‘Suspicious IPs’) AND bytes > 1000000000  network where dest.publicnetwork IN (‘Internet IPs’, ‘Suspicious IPs’) AND bytes > 1000000000  show traffic where destination.network = (‘Internet IPs’, ‘Suspicious IPs’) AND bytes > 1000000000  network where bytes > 1GB and destination = ‘Internet IPs’ OR ‘Suspicious IPs’ Explanationhttps://docs.paloaltonetworks.com/prisma/prisma-cloud/prisma-cloud-rql-reference/rql-reference/rql-examples All network traffic that is greater than 1GB and destined to Internet or Suspicious IPs (allows you to identify data exfiltration attempt on any cloud environment).network where dest.publicnetwork IN ( ‘Internet IPs’, ‘Suspicious IPs’ ) AND bytes > 1000000000 Loading … Pass Your Palo Alto Networks Exam with PSE-PrismaCloud Exam Dumps: https://www.examslabs.com/Palo-Alto-Networks/PSE-Prisma-Cloud-Professional/best-PSE-PrismaCloud-exam-dumps.html --------------------------------------------------- Images: https://blog.examslabs.com/wp-content/plugins/watu/loading.gif https://blog.examslabs.com/wp-content/plugins/watu/loading.gif --------------------------------------------------- --------------------------------------------------- Post date: 2022-05-06 06:15:27 Post date GMT: 2022-05-06 06:15:27 Post modified date: 2022-05-06 06:15:27 Post modified date GMT: 2022-05-06 06:15:27