Which CLI command can be used to export the tcpdump capture?
Answer : C
Reference:
https://live.paloaltonetworks.com/t5/Management-Articles/How-To-Packet-Capture-tcpdump-On-Management-Interface/ta-p/55415
An administrator has configured the Palo Alto Networks NGFWג€™s management interface to connect to the internet through a dedicated path that does not traverse back through the NGFW itself.
Which configuration setting or step will allow the firewall to get automatic application signature updates?
Answer : A
Which three options are supported in HA Lite? (Choose three.)
Answer : BCD
Reference:
https://www.paloaltonetworks.com/documentation/80/pan-os/web-interface-help/device/device-high-availability/ha-lite
Which CLI command enables an administrator to view details about the firewall including uptime, PAN-OSֲ® version, and serial number?
Answer : C
Reference:
https://live.paloaltonetworks.com/t5/Learning-Articles/Quick-Reference-Guide-Helpful-Commands/ta-p/56511
During the packet flow process, which two processes are performed in application identification? (Choose two.)
Answer : AB
Which tool provides an administrator the ability to see trends in traffic over periods of time, such as threats detected in the last 30 days?
Answer : B
Reference:
https://live.paloaltonetworks.com/t5/Management-Articles/Tips-amp-Tricks-How-to-Use-the-Application-Command-Center-ACC/ta-p/67342
The certificate information displayed in the following image is for which type of certificate?
Answer : B
Which three steps will reduce the CPU utilization on the management plane? (Choose three.)
Answer : ACD
Which feature must you configure to prevent users from accidentally submitting their corporate credentials to a phishing website?
Answer : A
Reference:
https://www.paloaltonetworks.com/documentation/80/pan-os/pan-os/threat-prevention/prevent-credential-phishing
How can a candidate or running configuration be copied to a host external from Panorama?
Answer : D
Reference:
https://www.paloaltonetworks.com/documentation/71/panorama/panorama_adminguide/administer-panorama/back-up-panorama-and-firewall- configurations
If an administrator does not possess a website's certificate, which SSL decryption mode will allow the Palo Alto Networks NGFW to inspect traffic when users browse to HTTP(S) websites?
Answer : A
An administrator sees several inbound sessions identified as unknown-tcp in the Traffic logs. The administrator determines that these sessions are form external users accessing the companyג€™s proprietary accounting application. The administrator wants to reliably identify this traffic as their accounting application and to scan this traffic for threats.
Which option would achieve this result?
Answer : A
The administrator has enabled BGP on a virtual router on the Palo Alto Networks NGFW, but new routes do not seem to be populating the virtual router.
Which two options would help the administrator troubleshoot this issue? (Choose two.)
Answer : BC
An administrator has enabled OSPF on a virtual router on the NGFW. OSPF is not adding new routes to the virtual router.
Which two options enable the administrator to troubleshoot this issue? (Choose two.)
Answer : AB