Palo Alto Networks PSE-StrataDC Exam Practice Test Instant Access

Question 1

Why are containers uniquely suitable for whitelist-based runtime security?

ADevelopers typically define the processes used in their containers within the Dockerfile

BDocker has a built-in runtime analysis capability to aid in whitelisting.

CContainers typically have only a few defined processes that should ever be executed.

DOperations teams typically know what processes are used within a container

Answer : A

Question 2

Which three software components have integration for deploying a VM-Series firewall in OpenStack? (Choose three)

AMirantis OpenStack distribution

BNuage VSP SDN controller

CVMWare NSX for OpenStack

DCisco ACI

EContrail SDN controller

Answer : A, C, D

Question 3

How does Palo Alto Networks integrate with VXLAN tagging?

Adoes not integrate with VXLAN tagging, so virtual appliances cannot be provided, but hardware appliances can be offered at the data center gateway border

Bintegrates with VXLAN. but scripting is necessary, and Professional Services should be engaged

Cintegrates fully into VXLAN architectures if they are provided by VMware

Ddoes not integrate natively with VXLAN tagging, network equipment can convert VXLAN flows to VLANs and send those VLANs to Palo Alto Networks firewalls

Answer : C

Question 4

A company allows employees some personal use of the internet during work time However the CEO is concerned that employees are using too much of the bandwidth for YouTube. thus causing a performance problem. Which section of the SLR could confirm or allay this concern?

ACategories with the Most Applications

BCategories Consuming the Most Bandwidth

CBandwidth Consumed by Applications

DHigh-Risk Applications

Answer : B

Question 5

In PAN-OS, which three NSX features can be pushed from Panorama? (Choose three )

Auser IP mappings

Bsteering rules

Cmultiple authorization codes

Dsecurity group assignments of VMs

Esecurity groups

Answer : A, C, E

Question 6

Which two OpenStack components are used in the creation of a VM-Series firewall from a heat template in OpenStack? (Choose two )

ASwift creates the storage resources.

BNova creates the firewall instance.

CHorizon

DNeutron creates the network resources.

Answer : A, C

Question 7

Which features are included in the less-expensive license bundle meant for NSX?

Acapacity license, premium support, a threat prevention subscription. and GlobalProtect

Bcapacity license and premium support

Ccapacity license, premium support and a threat prevention subscription

Dcapacity license and a threat prevention subscription

Answer : B

Palo Alto Networks System Engineer - Strata Data Center Exam Practice Test