Import Device State 61 Sample questions 61 Exam Domain 2 Simply Passing Traffic

Import device state 61 sample questions 61 exam

This preview shows page 5 - 9 out of 181 pages.

Import Device State .............................................................................................................. 61 Sample questions ...................................................................................................................... 61 Exam Domain 2 – Simply Passing Traffic ........................................................... 62 2.3 Identify and schedule dynamic updates. ............................................................................ 62 Dynamic Updates .................................................................................................................. 62 Downloading and Installing Updates .................................................................................... 64 Downloading Updates ........................................................................................................... 65 Installing Updates ................................................................................................................. 65 Software Updates .................................................................................................................. 66 Sample questions ...................................................................................................................... 67 Exam Domain 2 – Simply Passing Traffic ........................................................... 68 2.4 Configure internal and external services for account administration. ............................... 68 Administrative Role Types ................................................................................................... 68 Authentication Sequence ...................................................................................................... 72 Admin Account Passwords ................................................................................................... 73 Config Logs .......................................................................................................................... 74 Sample questions ...................................................................................................................... 75 Exam Domain 2 – Simply Passing Traffic ........................................................... 76
Image of page 5
©2018 Palo Alto Networks, Inc. 6 2.5 Given a network diagram, create the appropriate security zones. .................................... 76 Security Zones ...................................................................................................................... 76 Sample questions ...................................................................................................................... 79 Exam Domain 2 – Simply Passing Traffic ........................................................... 80 2.6 Identify and configure firewall interfaces. .......................................................................... 80 Types of Ethernet Interfaces ................................................................................................. 80 Tap, Virtual Wire, Layer 2, and Layer 3 interfaces .............................................................. 82 Virtual Wire .......................................................................................................................... 83 Virtual Wire Subinterfaces ................................................................................................... 86 Layer 2 Interfaces ................................................................................................................. 88 Layer 2 Subinterfaces ........................................................................................................... 90 Layer 3 Interfaces ................................................................................................................. 92 Layer 3 Subinterfaces ........................................................................................................... 95 Sample questions ...................................................................................................................... 98 Exam Domain 2 – Simply Passing Traffic ........................................................... 99 2.7 Given a scenario, identify steps to create and configure a virtual router. ......................... 99 Virtual Routers ...................................................................................................................... 99 Virtual Router General Configuration Settings .................................................................. 101 Static Route Configuration Settings .................................................................................... 102 Path Monitoring for Static Routes Configuration Settings ................................................. 103 Virtual Router Forwarding Information Base ..................................................................... 105 Sample questions .................................................................................................................... 106 Exam Domain 2 – Simply Passing Traffic ......................................................... 106 2.8 Identify the purpose of specific security rule types. ......................................................... 106 Security Rule Types ............................................................................................................ 106 Sample questions .................................................................................................................... 109 Exam Domain 2 – Simply Passing Traffic ......................................................... 110 2.9 Identify and configure security policy match conditions, actions, and logging options. .. 110 Implicit and Explicit Rules ................................................................................................. 110
Image of page 6
©2018 Palo Alto Networks, Inc. 7 Security Rule Hit Count ...................................................................................................... 111 Sample questions .................................................................................................................... 112 Exam Domain 2 – Simply Passing Traffic ......................................................... 112 2.10 Given a scenario, identify and implement the proper NAT solution. ............................. 112 NAT Types .......................................................................................................................... 112 Source NAT Types ............................................................................................................. 114 Source NAT and Security Policies ..................................................................................... 115 Configuring Source NAT .................................................................................................... 117 Configuring Bidirectional Source NAT .............................................................................. 117 DIPP NAT Oversubscription .............................................................................................. 118 Destination NAT Types ...................................................................................................... 119 Destination NAT and Security Policies .............................................................................. 120 Configuring Destination NAT ............................................................................................ 121 Configuring Dynamic IP Address Support for DNAT ....................................................... 122 Configuring Destination NAT Port Forwarding ................................................................. 122 Sample questions .................................................................................................................... 123 Exam Domain 3 – Traffic Visibility ................................................................... 124 3.1 Given a scenario, select the appropriate application-based security policy rules. .......... 124 Application Shifts ............................................................................................................... 124 Dependent Applications ...................................................................................................... 124 Determining Dependent Applications ................................................................................. 126 Implicit Applications and Determining Implicit Applications ........................................... 126 Sample question ...................................................................................................................... 127 Exam Domain 3 – Traffic Visibility ................................................................... 128 3.2 Given a scenario, configure application filters or application groups. ............................. 128 Application Filters .............................................................................................................. 128 Application Groups ............................................................................................................. 129 Nesting Application Groups and Filters ............................................................................. 130 Sample questions .................................................................................................................... 131
Image of page 7
©2018 Palo Alto Networks, Inc. 8 Exam Domain 3 – Traffic Visibility ................................................................... 132 3.3 Identify the purpose of application characteristics as defined in the App-ID database... 132 Application Properties ........................................................................................................ 132 Application Characteristics ................................................................................................. 132 Application Timeouts .......................................................................................................... 133 Sample questions .................................................................................................................... 134 Exam Domain 3 – Traffic Visibility ................................................................... 134 3.4 Identify the potential impact of App-ID updates to existing security policy rules.
Image of page 8
Image of page 9

You've reached the end of your free preview.

Want to read all 181 pages?

  • Fall '19

  • Left Quote Icon

    Student Picture

  • Left Quote Icon

    Student Picture

  • Left Quote Icon

    Student Picture