EMT Practice Test

1. Question Content...


Question List

Question1: In which profile should you configure the DNS Security feature?

Question2: An administrator wants to prevent users from submitting corporate credentials in a phishing attack.
Which Security profile should be applied?

Question3: To use Active Directory to authenticate administrators, which server profile is required in the authentication profile?

Question4: An administrator would like to see the traffic that matches the interzone-default rule in the traffic logs.
What is the correct process to enable this logging1?

Question5: Which security policy rule would be needed to match traffic that passes between the Outside zone and Inside zone, but does not match traffic that passes within the zones?

Question6: Which statement is true regarding a Best Practice Assessment?

Question7: Match the Palo Alto Networks Security Operating Platform architecture to its description.

Question8: Choose the option that correctly completes this statement. A Security Profile can block or allow traffic ____________.

Question9: Which type of profile must be applied to the Security policy rule to protect against buffer overflows illegal code execution and other attempts to exploit system flaws''

Question10: Which two components are utilized within the Single-Pass Parallel Processing architecture on a Palo Alto Networks Firewall? (Choose two.)

Question11: What must be considered with regards to content updates deployed from Panorama?

Question12: An administrator has configured a Security policy where the matching condition includes a single application and the action is deny If the application s default deny action is reset-both what action does the firewall take*?

Question13: What is a prerequisite before enabling an administrative account which relies on a local firewall user database?

Question14: Which link in the web interface enables a security administrator to view the security policy rules that match new application signatures?

Question15: An administrator is troubleshooting an issue with traffic that matches the intrazone-default rule, which is set to default configuration.
What should the administrator do?

Question16: Which type security policy rule would match traffic flowing between the inside zone and outside zone within the inside zone and within the outside zone?

Question17: An administrator wishes to follow best practices for logging traffic that traverses the firewall Which log setting is correct?

Question18: Access to which feature requires the PAN-OS Filtering license?

Question19: What is the main function of Policy Optimizer?

Question20: A network has 10 domain controllers, multiple WAN links, and a network infrastructure with bandwidth needed to support mission-critical applications. Given the scenario, which type of User-ID agent is considered a best practice by Palo Alto Networks?

Question21: Which rule type is appropriate for matching traffic both within and between the source and destination zones?

Question22: Which Security profile can you apply to protect against malware such as worms and Trojans?

Question23: Given the scenario, which two statements are correct regarding multiple static default routes? (Choose two.)

Question24: Which two firewall components enable you to configure SYN flood protection thresholds? (Choose two.)

Question25: Which statement is true regarding a Prevention Posture Assessment?

Question26: Actions can be set for which two items in a URL filtering security profile? (Choose two.)

Question27: Based on the screenshot what is the purpose of the included groups?

Question28: Which two statements are true for the DNS security service introduced in PAN-OS version 10.0?

Question29: Which statement is true about Panorama managed devices?

Question30: Which plane on a Palo alto networks firewall provides configuration logging and reporting functions on a separate processor?

Question31: Which action related to App-ID updates will enable a security administrator to view the existing security policy rule that matches new application signatures?

Question32: Which data flow direction is protected in a zero trust firewall deployment that is not protected in a perimeter-only firewall deployment?

Question33: Which type of security policy rule will match traffic that flows between the Outside zone and inside zone, but would not match traffic that flows within the zones?

Question34: When HTTPS for management and GlobalProtect are enabled on the same interface, which TCP port is used for management access?

Question35: Which operations are allowed when working with App-ID application tags?

Question36:
Given the topology, which zone type should you configure for firewall interface E1/1?

Question37: Which component is a building block in a Security policy rule?

Question38: How often does WildFire release dynamic updates?

Question39: What is the main function of the Test Policy Match function?

Question40: Which two statements are correct about App-ID content updates? (Choose two.)

Question41: At which point in the app-ID update process can you determine if an existing policy rule is affected by an app-ID update?

Question42: Which data-plane processor layer of the graphic shown provides uniform matching for spyware and vulnerability exploits on a Palo Alto Networks Firewall?

Question43: What action will inform end users when their access to Internet content is being restricted?

Question44: Which three types of authentication services can be used to authenticate user traffic flowing through the firewalls data plane? (Choose three )

Question45: Starting with PAN_OS version 9.1 which new type of object is supported for use within the user field of a security policy rule?

Question46: Arrange the correct order that the URL classifications are processed within the system.

Question47: A Security Profile can block or allow traffic at which point?

Question48: Which two features can be used to tag a username so that it is included in a dynamic user group? (Choose two.)

Question49: How do you reset the hit count on a security policy rule?

Question50: What is the purpose of the automated commit recovery feature?

Question51: Which two security profile types can be attached to a security policy? (Choose two.)

Question52: Four configuration choices are listed, and each could be used to block access to a specific URL. If you configured each choices to block the sameURL then which choice would be the last to block access to the URL?

Question53: Which two settings allow you to restrict access to the management interface? (Choose two )

Question54: A security administrator has configured App-ID updates to be automatically downloaded and installed. The company is currently using an application identified by App-ID as SuperApp_base.
On a content update notice, Palo Alto Networks is adding new app signatures labeled SuperApp_chat and SuperApp_download, which will be deployed in 30 days.
Based on the information, how is the SuperApp traffic affected after the 30 days have passed?

Question55: What is considered best practice with regards to committing configuration changes?

Question56: What two authentication methods on the Palo Alto Networks firewalls support authentication and authorization for role-based access control? (Choose two.)

Question57: Which action results in the firewall blocking network traffic with out notifying the sender?

Question58: Which license must an administrator acquire prior to downloading Antivirus updates for use with the firewall?

Question59: Match each feature to the DoS Protection Policy or the DoS Protection Profile.

Question60: Recently changes were made to the firewall to optimize the policies and the security team wants to see if those changes are helping.
What is the quickest way to reset the hit counter to zero in all the security policy rules?

Question61: Which Palo Alto networks security operating platform service protects cloud-based application such as Dropbox and salesforce by monitoring permissions and shared and scanning files for Sensitive information?

Question62: Which update option is not available to administrators?

Question63: Which Palo Alto network security operating platform component provides consolidated policy creation and centralized management?

Question64: Which definition describes the guiding principle of the zero-trust architecture?

Question65: How does an administrator schedule an Applications and Threats dynamic update while delaying installation of the update for a certain amount of time?

Question66: Refer to the exhibit. A web server in the DMZ is being mapped to a public address through DNAT.

Which Security policy rule will allow traffic to flow to the web server?

Question67: Order the steps needed to create a new security zone with a Palo Alto Networks firewall.

Question68: During the packet flow process, which two processes are performed in application identification? (Choose two.)