EMT Practice Test

1. Question Content...


Question List

Question1: Which administrator receives a global notification for a new malware that infects hosts. The infection will result in the infected host attempting to contact and command-and-control (C2) server.
Which security profile components will detect and prevent this threat after the firewall`s signature database has been updated?

Question2: Based on the security policy rules shown, ssh will be allowed on which port?

Question3: An administrator needs to allow users to use their own office applications. How should the administrator configure the firewall to allow multiple applications in a dynamic environment?

Question4: Which protocol used to map username to user groups when user-ID is configured?

Question5: How frequently can wildfire updates be made available to firewalls?

Question6: Given the topology, which zone type should zone A and zone B to be configured with?

Question7: Which security profile will provide the best protection against ICMP floods, based on individual combinations of a packet`s source and destination IP address?

Question8: How do you reset the hit count on a security policy rule?

Question9: The Palo Alto Networks NGFW was configured with a single virtual router named VR-1 What changes are required on VR-1 to route traffic between two interfaces on the NGFW?

Question10: Which two App-ID applications will need to be allowed to use Facebook-chat? (Choose two.)

Question11: How often does WildFire release dynamic updates?

Question12: What can be achieved by selecting a policy target prior to pushing policy rules from Panorama?

Question13: Which User-ID agent would be appropriate in a network with multiple WAN links, limited network bandwidth, and limited firewall management plane resources?

Question14: Which type of administrative role must you assign to a firewall administrator account, if the account must include a custom set of firewall permissions?

Question15: Which rule type is appropriate for matching traffic both within and between the source and destination zones?

Question16: Given the image, which two options are true about the Security policy rules. (Choose two.)

Question17: Which type firewall configuration contains in-progress configuration changes?

Question18: Which User-ID mapping method should be used for an environment with clients that do not authenticate to Windows Active Directory?

Question19: Assume that traffic matches a Security policy rule but the attached Security Profiles is configured to block matching traffic Which statement accurately describes how the firewall will apply an action to matching traffic?

Question20: Which statement is true regarding a Best Practice Assessment?

Question21: Match the Palo Alto Networks Security Operating Platform architecture to its description.

Question22: Which user mapping method could be used to discover user IDs in an environment with multiple Windows domain controllers?

Question23: Which Palo Alto networks security operating platform service protects cloud-based application such as Dropbox and salesforce by monitoring permissions and shared and scanning files for Sensitive information?

Question24: What is the minimum timeframe that can be set on the firewall to check for new WildFire signatures?

Question25: Which Palo Alto network security operating platform component provides consolidated policy creation and centralized management?

Question26: To use Active Directory to authenticate administrators, which server profile is required in the authentication profile?

Question27: Which link in the web interface enables a security administrator to view the security policy rules that match new application signatures?

Question28: Based on the screenshot what is the purpose of the group in User labelled ''it"?

Question29: Which license must an Administrator acquire prior to downloading Antivirus Updates for use with the firewall?

Question30: Which Palo Alto Networks firewall security platform provides network security for mobile endpoints by inspecting traffic deployed as internet gateways?

Question31: Four configuration choices are listed, and each could be used to block access to a specific URL. If you configured each choices to block the sameURL then which choice would be the last to block access to the URL?

Question32: Which the app-ID application will you need to allow in your security policy to use facebook-chat?

Question33: How is the hit count reset on a rule?

Question34: At which stage of the cyber-attack lifecycle would the attacker attach an infected PDF file to an email?

Question35: Which action results in the firewall blocking network traffic without notifying the sender?

Question36: Which interface type can use virtual routers and routing protocols?

Question37: An administrator wants to prevent users from submitting corporate credentials in a phishing attack.
Which Security profile should be applied?

Question38: A server-admin in the USERS-zone requires SSH-access to all possible servers in all current and future Public Cloud environments. All other required connections have already been enabled between the USERS- and the OUTSIDE-zone. What configuration-changes should the Firewall-admin make?

Question39: Which Security profile can you apply to protect against malware such as worms and Trojans?

Question40: Which Security profile would you apply to identify infected hosts on the protected network using DNS traffic?

Question41: Given the cyber-attack lifecycle diagram identify the stage in which the attacker can run malicious code against a vulnerability in a targeted machine.

Question42: Which interface type is used to monitor traffic and cannot be used to perform traffic shaping?

Question43: Which interface type is part of a Layer 3 zone with a Palo Alto Networks firewall?

Question44: Order the steps needed to create a new security zone with a Palo Alto Networks firewall.

Question45: Palo Alto Networks firewall architecture accelerates content map minimizing latency using which two components'? (Choose two )

Question46: Which two statements are true for the DNS security service introduced in PAN-OS version 10.0?

Question47: Which type of profile must be applied to the Security policy rule to protect against buffer overflows illegal code execution and other attempts to exploit system flaws''

Question48: A Security Profile can block or allow traffic at which point?

Question49: You need to allow users to access the office-suite application of their choice. How should you configure the firewall to allow access to any office-suite application?

Question50: Which URL profiling action does not generate a log entry when a user attempts to access that URL?

Question51: Which prevention technique will prevent attacks based on packet count?

Question52: Which two settings allow you to restrict access to the management interface? (Choose two )

Question53: Based on the screenshot presented which column contains the link that when clicked opens a window to display all applications matched to the policy rule?

Question54: Which security policy rule would be needed to match traffic that passes between the Outside zone and Inside zone, but does not match traffic that passes within the zones?

Question55:
Given the topology, which zone type should interface E1/1 be configured with?

Question56: The PowerBall Lottery has reached a high payout amount and a company has decided to help employee morale by allowing employees to check the number, but doesn't want to unblock the gambling URL category.
Which two methods will allow the employees to get to the PowerBall Lottery site without the company unlocking the gambling URL category? (Choose two.)

Question57: Which operations are allowed when working with App-ID application tags?

Question58: What is the correct process tor creating a custom URL category?

Question59: Which action results in the firewall blocking network traffic with out notifying the sender?