A customer has a pair of Panorama HA appliances tunning local log collectors and wants to have log redundancy on logs forwarded from firewalls Which two configuration options fulfill the customer's requirement for log redundancy? (Choose two)
A. A Collector Group must contain at least two Log Collectors
B. Panorama operational mode needs to be Dedicated Log Collector
C. Log redundancy must be enabled per Collector Group
D. Panorama configured in HA provides log redundancy
正解:A,C
解説: (Pass4Test メンバーにのみ表示されます)
質問 2:
Identity the Stakeholder with their Role when planning a Firewall Panorama, and Cortex XDR Deployment

正解:

Explanation:
* Security Engineer- Determines the security, logging, reporting requirements and manages the policy.
* System Administrator- Manages the software distribution method for the Cortex XDR Client.
* Security Operations Analyst- Manages the alerts and responds to threats identified on the network or endpoints.
* Network Engineer- Manages the routing, switching, and general device interconnectivity.
When planning a deployment involving Firewall, Panorama, and Cortex XDR, each stakeholder plays a specific role:
* Security Engineer- This role involves defining and managing security policies, logging configurations, and reporting requirements to ensure compliance and optimal security posture. They are responsible for the overall security configuration and implementation.
質問 3:
A firewall that was previously connected lo a User-ID agent server now shows disconnected What is the likely cause?
A. The firewall was upgraded to a PAN-OS version that is not compatible with the agent version
B. The agent is not running
C. The Domain Controller service account has been locked out
D. The server has stopped listening on port 2010
正解:A
解説: (Pass4Test メンバーにのみ表示されます)
質問 4:
Your customer believes that the Panorama appliance is being overwhelmed by the logs from deployed Palo Alto Networks Next-Generation Firewalls.What CLl command can you run to determine the number oflogs per second sent by each firewall?
A. debug log-sender statistics
B. debug log-receiver statistics
C. logging status
D. show log traffic
正解:B
解説: (Pass4Test メンバーにのみ表示されます)
質問 5:
Which three steps must an administrator perform to load only address objects from a PAN-OS saved configuration file into a VM-3C0 firewall that is in production? (Choose three)
A. Import named configuration snapshot through the web interface
B. use load config partial command
C. enter the configuration mode from the CLI
D. use the device configuration import in Panorama
E. load the config in the web interface and commit
正解:B,C,E
解説: (Pass4Test メンバーにのみ表示されます)
質問 6:
An administrator needs to create a new Antivirus Profile to address a virus that is spreading internally over SMB.
To create a secure posture the administrator should choose which set of actions for the SMB decoder in an Antivirus Profile?
A. Action - Reset-Both: Wildfire Action - Reset-Both
B. Action - Allow; Wildfire Action - Allow
C. Action - Reset-Both. WiWfire Action - Alert
D. Action - Drop; Wildfire Action - Reset-Both
正解:A
解説: (Pass4Test メンバーにのみ表示されます)
質問 7:
What command can you use to check the status of GlobalProtect clients connected to the firewall?
A. show globalprotect statistics
B. show globalprotect current-user
C. show globalprotect status
D. show globalprotect gateway
正解:D
969 お客様のコメント





Yaguchi -
PCNSC問題集は歯切れよい簡潔な解説が並び、スーッと最短で合格できるのがわかる。