EMT Practice Test

1. Question Content...


Question List

Question1: Which two steps are involved in deployment of a VM-Series firewall on NSX? (Choose two.)

Question2: Where do CN-Series devices obtain a VM-Series authorization key?

Question3: Which two criteria are required to deploy VM-Series firewalls in high availability (HA)? (Choose two.)

Question4: Which two factors lead to improved return on investment for prospects interested in Palo Alto Networks virtualized next-generation firewalls (NGFWs)? (Choose two.)

Question5: Which of the following can provide application-level security for a web-server instance on Amazon Web Services (AWS)?

Question6: How are CN-Series firewalls licensed?

Question7: How does a CN-Series firewall prevent exfiltration?

Question8: Which component allows the flexibility to add network resources but does not require making changes to existing policies and rules?

Question9: Which two statements apply to the VM-Series plugin? (Choose two.)

Question10: Which component scans for threats in allowed traffic?

Question11: Which type of group allows sharing cloud-learned tags with on-premises firewalls?

Question12: What are two requirements for automating service deployment of a VM-Series firewall from an NSX Manager? (Choose two.)

Question13: Which two configuration options does Palo Alto Networks recommend for outbound high availability (HA) design in Amazon Web Services using a VM-Series firewall? (Choose two.)

Question14: Which two subscriptions should be recommended to a customer who is deploying VM-Series firewalls to a private data center but is concerned about protecting data-center resources from malware and lateral movement? (Choose two.)

Question15: Which two routing options are supported by VM-Series? (Choose two.)

Question16: Which two features of CN-Series firewalls protect east-west traffic between pods in different trust zones? (Choose two.)

Question17: Which offering can gain visibility and prevent an attack by a malicious actor attempting to exploit a known web server vulnerability using encrypted communication?

Question18: What is the appropriate file format for Kubernetes applications?

Question19: How must a Palo Alto Networks Next-Generation Firewall (NGFW) be configured in order to secure traffic in a Cisco ACI environment?

Question20: What can software next-generation firewall (NGFW) credits be used to provision?

Question21: Which two deployment modes of VM-Series firewalls are supported across NSX-T? (Choose two.)

Question22: Which feature must be configured in an NSX environment to ensure proper operation of a VM-Series firewall in order to secure east-west traffic?

Question23: What do tags allow a VM-Series firewall to do in a virtual environment?

Question24: Which service, when enabled, provides inbound traffic protection?

Question25: With which two private cloud environments does Palo Alto Networks have deep integrations? (Choose two.)

Question26: Regarding network segmentation, which two steps are involved in the configuration of a default route to an internet router? (Choose two.)

Question27: Why are VM-Series firewalls and hardware firewalls that are external to the Kubernetes cluster problematic for protecting containerized workloads?