Which two methods can be configured to validate the revocation status of a certificate? (Choose two.)

A file sharing application is being permitted and no one knows what this application is used for. How should this application be blocked?

Support for which authentication method was added in PAN-OS 8.0?

In a firewall, which three decryption methods are valid? (Choose three )

A client is deploying a pair of PA-5000 series firewalls using High Availability (HA) in Active/Passive mode. Which statement is true about this deployment?

Palo Alto Networks maintains a dynamic database of malicious domains. Which two Security Platform components use this database to prevent threats? (Choose two)

An engineer must configure the Decryption Broker feature Which Decryption Broker security chain supports bi-directional traffic flow?

Which two actions would be part of an automatic solution that would block sites with untrusted certificates without enabling SSL Forward Proxy? (Choose two.)

In a Panorama template which three types of objects are configurable? (Choose three)

An administrator needs to implement an NGFW between their DMZ and Core network EIGRP Routing between the two environments is required Which interface type would support this business requirement?

Which two virtualized environments support Active/Active High Availability (HA) in PAN-OS 8.0? (Choose two.)

What are three possible verdicts that WildFire can provide for an analyzed sample? (Choose three)

In the following image from Panorama, why are some values shown in red?

A network security engineer is asked to provide a report on bandwidth usage. Which tab in the ACC provides the information needed to create the report?

How would an administrator monitor/capture traffic on the management interface of the Palo Alto Networks NGFW?

The administrator has enabled BGP on a virtual router on the Palo Alto Networks NGFW, but new routes do not seem to be populating the virtual router. Which two options would help the administrator troubleshoot this issue? (Choose two.)

A users traffic traversing a Palo Alto networks NGFW sometimes can reach http //www company com At other times the session times out. At other times the session times out The NGFW has been configured with a PBF rule that the user traffic matches when it goes to http://www.company.com goes to http://www company com How can the firewall be configured to automatically disable the PBF rule if the next hop goes down?

What are three valid actions in a File Blocking Profile? (Choose three)

For which two reasons would a firewall discard a packet as part of the packet flow sequence? (Choose two )

When setting up a security profile which three items can you use? (Choose three )

An administrator needs to optimize traffic to prefer business-critical applications over non-critical applications. QoS natively integrates with which feature to provide service quality?

How does Panorama handle incoming logs when it reaches the maximum storage capacity?

Which operation will impact performance of the management plane?

What file type upload is supported as part of the basic WildFire service?

Which three rule types are available when defining policies in Panorama? (Choose three.)

Which option describes the operation of the automatic commit recovery feature?

In SSL Forward Proxy decryption, which two certificates can be used for certificate signing? (Choose two.)

A web server is hosted in the DMZ and the server is configured to listen for incoming connections on TCP port 443. A Security policies rules allowing access from the Trust zone to the DMZ zone needs to be configured to allow web-browsing access. The web server hosts its contents over HTTP(S). Traffic from Trust to DMZ is being decrypted with a Forward Proxy rule. Which combination of service and application, and order of Security policy rules, needs to be configured to allow cleartext web- browsing traffic

A firewall administrator has completed most of the steps required to provision a standalone Palo Alto Networks Next-Generation Firewall. As a final step, the administrator wants to test one of the security policies. Which CLI command syntax will display the rule that matches the test?