
Palo Alto Networks Network Security Generalist - NetSec-Generalist Exam Questions
QUESTION NO: 1
An administrator has imported a pair of firewalls to Panorama under the same template stack. As a part of the template stack, the administrator wants to create a high availability (HA) template to be shared by the firewalls.
Which dynamic component should the administrator use when setting the Peer HA1 IP address?
An administrator has imported a pair of firewalls to Panorama under the same template stack. As a part of the template stack, the administrator wants to create a high availability (HA) template to be shared by the firewalls.
Which dynamic component should the administrator use when setting the Peer HA1 IP address?
Correct Answer: C
Explanation: Only visible for Pass4Test members. You can sign-up / login (it's free).
QUESTION NO: 2
Which network design for internet of things (loT) Security allows traffic mirroring from the switch to a TAP interface on the firewall to monitor traffic not otherwise seen?
Which network design for internet of things (loT) Security allows traffic mirroring from the switch to a TAP interface on the firewall to monitor traffic not otherwise seen?
Correct Answer: C
Explanation: Only visible for Pass4Test members. You can sign-up / login (it's free).
QUESTION NO: 3
Which two security profiles must be updated to prevent data exfiltration in outbound traffic on NGFWs? (Choose two.)
Which two security profiles must be updated to prevent data exfiltration in outbound traffic on NGFWs? (Choose two.)
Correct Answer: A,B
Explanation: Only visible for Pass4Test members. You can sign-up / login (it's free).
QUESTION NO: 4
A company has an ongoing initiative to monitor and control IT-sanctioned SaaS applications. To be successful, it will require configuration of decryption policies, along with data filtering and URL Filtering Profiles used in Security policies.
Based on the need to decrypt SaaS applications, which two steps are appropriate to ensure success? (Choose two.)
A company has an ongoing initiative to monitor and control IT-sanctioned SaaS applications. To be successful, it will require configuration of decryption policies, along with data filtering and URL Filtering Profiles used in Security policies.
Based on the need to decrypt SaaS applications, which two steps are appropriate to ensure success? (Choose two.)
Correct Answer: C,D
Explanation: Only visible for Pass4Test members. You can sign-up / login (it's free).
QUESTION NO: 5
What is a benefit of virtual systems for multitenancy?
What is a benefit of virtual systems for multitenancy?
Correct Answer: B
Explanation: Only visible for Pass4Test members. You can sign-up / login (it's free).
QUESTION NO: 6
A security administrator is adding a new sanctioned cloud application to SaaS Data Security.
After authentication, how does the tool gain API access for monitoring?
A security administrator is adding a new sanctioned cloud application to SaaS Data Security.
After authentication, how does the tool gain API access for monitoring?
Correct Answer: A
Explanation: Only visible for Pass4Test members. You can sign-up / login (it's free).
QUESTION NO: 7
In which mode should an ION device be configured at a newly acquired site to allow site traffic to be audited without steering traffic?
In which mode should an ION device be configured at a newly acquired site to allow site traffic to be audited without steering traffic?
Correct Answer: B
Explanation: Only visible for Pass4Test members. You can sign-up / login (it's free).




