EMT Practice Test

1. Question Content...


Question List

Question1: Which two components are utilized within the Single-Pass Parallel Processing architecture on a Palo Alto Networks Firewall? (Choose two.)

Question2: Which protocol used to map username to user groups when user-ID is configured?

Question3: When creating a Source NAT policy, which entry in the Translated Packet tab will display the options Dynamic IP and Port, Dynamic, Static IP, and None?

Question4: Which data-plane processor layer of the graphic shown provides uniform matching for spyware and vulnerability exploits on a Palo Alto Networks Firewall?

Question5:
Given the topology, which zone type should interface E1/1 be configured with?

Question6: How often does WildFire release dynamic updates?

Question7: In which stage of the Cyber-Attack Lifecycle would the attacker inject a PDF file within an email?

Question8: Which type firewall configuration contains in-progress configuration changes?

Question9: Given the scenario, which two statements are correct regarding multiple static default routes? (Choose two.)

Question10: What in the minimum frequency for which you can configure the firewall too check for new wildfire antivirus signatures?

Question11: Users from the internal zone need to be allowed to Telnet into a server in the DMZ zone.
Complete the security policy to ensure only Telnet is allowed.
Security Policy: Source Zone: Internal to DMZ Zone __________services "Application defaults", and action = Allow

Question12: Which two App-ID applications will need to be allowed to use Facebook-chat? (Choose two.)

Question13: Which administrator receives a global notification for a new malware that infects hosts. The infection will result in the infected host attempting to contact and command-and-control (C2) server.
Which security profile components will detect and prevent this threat after the firewall`s signature database has been updated?

Question14: Which two Palo Alto Networks security management tools provide a consolidated creation of policies, centralized management and centralized threat intelligence. (Choose two.)

Question15: Which path is used to save and load a configuration with a Palo Alto Networks firewall?

Question16: Given the image, which two options are true about the Security policy rules. (Choose two.)

Question17: Arrange the correct order that the URL classifications are processed within the system.

Question18: Your company requires positive username attribution of every IP address used by wireless devices to support a new compliance requirement. You must collect IP -to-user mappings as soon as possible with minimal downtime and minimal configuration changes to the wireless devices themselves. The wireless devices are from various manufactures.
Given the scenario, choose the option for sending IP-to-user mappings to the NGFW.

Question19:

Question20: Which the app-ID application will you need to allow in your security policy to use facebook-chat?

Question21: Which user mapping method could be used to discover user IDs in an environment with multiple Windows domain controllers?

Question22: A company moved its old port-based firewall to a new Palo Alto Networks NGFW 60 days ago. Which utility should the company use to identify out-of-date or unused rules on the firewall?

Question23: What must be configured for the firewall to access multiple authentication profiles for external services to authenticate a non-local account?

Question24: Which interface type can use virtual routers and routing protocols?

Question25: Which plane on a Palo alto networks firewall provides configuration logging and reporting functions on a separate processor?

Question26: Based on the security policy rules shown, ssh will be allowed on which port?

Question27: Which interface type is part of a Layer 3 zone with a Palo Alto Networks firewall?

Question28: Which link in the web interface enables a security administrator to view the security policy rules that match new application signatures?

Question29: The CFO found a USB drive in the parking lot and decide to plug it into their corporate laptop. The USB drive had malware on it that loaded onto their computer and then contacted a known command and control (CnC) server, which ordered the infected machine to begin Exfiltrating data from the laptop.
Which security profile feature could have been used to prevent the communication with the CnC server?

Question30: Which option shows the attributes that are selectable when setting up application filters?

Question31: Your company occupies one floor in a single building you have two active directory domain controllers on a single networks the firewall s management plane is only slightly utilized.
Which user-ID agent sufficient in your network?

Question32: Which prevention technique will prevent attacks based on packet count?

Question33: Which three configuration settings are required on a Palo Alto networks firewall management interface?