PCNSE Exam Question 136
During a routine security audit, the risk and compliance team notices a series of WildFire logs that contain a "malicious" verdict and the action "allow." Upon further inspection, the team confirms that these same threats are automatically blocked by the firewalls the following day. How can the existing configuration be adjusted to ensure that new threats are blocked within minutes instead of having to wait until the following day?
PCNSE Exam Question 137
A security engineer is informed that the vulnerability protection profile of their on-premises Palo Alto Networks firewall is triggering on a common Threat ID, and which has been determined to be a false positive. The engineer is asked to resolve the issue as soon as possible because it is causing an outage for a critical service. The engineer opens the vulnerability protection profile to add the exception, but the Threat ID is missing.
Which action is the most operationally efficient for the security engineer to find and implement the exception?
Which action is the most operationally efficient for the security engineer to find and implement the exception?
PCNSE Exam Question 138
Which interface configuration will accept specific VLAN IDs?
PCNSE Exam Question 139
What are three reasons for excluding a site from SSL decryption? (Choose three.)
PCNSE Exam Question 140
An engineer has been given approval to upgrade their environment to the latest version of PAN- OS. The environment consists of both physical and virtual firewalls, a virtual Panorama, and virtual log collectors. What is the recommended order of operational steps when upgrading?