U.S. Independence Day Deal! Unlock 25% OFF Today – Limited-Time Offer - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions

Palo Alto Networks PSE-Endpoint Exam - Topic 1 Question 76 Discussion

A large manufacturer is planning to roll out Traps to 75,000 endpoints. Their environment consists of three major sites with 24,000 endpoints each, plus about 3,000 remote endpoints in smaller remote locations using always-on VPN connections to a single one of the major sites. The customer wants to minimize network traffic between the major sites, but all endpoints have internet access. The customer is looking for a centrally managed solution with common reporting and management for all endpoints in the environment.Which design option would be appropriate for this environment?
D) Place the Traps database and ESM Console in one of the major sites, and one ESM core server in each of the three major sites.
A) Place the Traps database. ESM Console and two ESM core servers in the large site hosting the VPN gateway, and force all endpoints to use VPN at all times.
B) Place the Traps database, ESM Console and seven ESM core servers in a public-cloud environment where the ESM Core servers are accessible from the internet.
C) Place a Traps database, ESM Console and an ESM core server in each of the three large sites.

Palo Alto Networks PSE-Endpoint Exam - Topic 1 Question 76 Discussion

Actual exam question for Palo Alto Networks's PSE-Endpoint exam
Question #: 76
Topic #: 1
[All PSE-Endpoint Questions]

A large manufacturer is planning to roll out Traps to 75,000 endpoints. Their environment consists of three major sites with 24,000 endpoints each, plus about 3,000 remote endpoints in smaller remote locations using always-on VPN connections to a single one of the major sites. The customer wants to minimize network traffic between the major sites, but all endpoints have internet access. The customer is looking for a centrally managed solution with common reporting and management for all endpoints in the environment.

Which design option would be appropriate for this environment?

Show Suggested Answer Hide Answer
Suggested Answer: D

Contribute your Thoughts:

0/2000 characters
Tammara
7 months ago
Wait, they want to minimize traffic but use always-on VPN? That’s confusing!
upvoted 0 times
...
Harrison
7 months ago
A sounds risky with all endpoints on VPN all the time.
upvoted 0 times
...
Veronika
7 months ago
C is too decentralized for my liking.
upvoted 0 times
...
Brynn
8 months ago
I think B could work too, but not sure about security.
upvoted 0 times
...
Sheldon
8 months ago
Option D seems like a solid choice for balanced load.
upvoted 0 times
...
Novella
8 months ago
I feel like option A could complicate things with the VPN requirement for all endpoints, which might not be ideal for remote users.
upvoted 0 times
...
Renay
8 months ago
I practiced a similar question where we had to consider site distribution, and I think option C might be overkill with three separate setups.
upvoted 0 times
...
Lasandra
8 months ago
I'm not entirely sure, but I think option B could lead to more latency issues since it relies on internet access for all endpoints.
upvoted 0 times
...
Temeka
8 months ago
I remember discussing the importance of minimizing network traffic, so option D seems like it could balance that need with centralized management.
upvoted 0 times
...
India
8 months ago
Option A with the VPN requirement seems overly restrictive. Forcing all endpoints to use VPN at all times could create performance issues and be a hassle for the remote users. I think there are better ways to approach this.
upvoted 0 times
...
Amie
8 months ago
I like the idea of the public cloud solution in option B, but I'm concerned about the security implications of having the ESM cores accessible from the internet. That could be a tough sell with the customer.
upvoted 0 times
...
Tamie
8 months ago
Option C seems like the simplest solution, but I'm not sure it fully addresses the requirement to minimize inter-site traffic. I'll have to double-check the details on that.
upvoted 0 times
...
Zita
9 months ago
Hmm, I'm a bit unsure about this one. The requirement to minimize network traffic between the major sites is throwing me off. I'll need to think through the pros and cons of each option carefully.
upvoted 0 times
...
In
9 months ago
This looks like a pretty straightforward design question. I think option D is the way to go - it minimizes network traffic between the major sites while still providing a centralized management solution.
upvoted 0 times
...
Levi
9 months ago
This seems pretty straightforward. I'm pretty sure the answer is A - it must use the VMware Tools for VMware Cloud Director.
upvoted 0 times
...
Alex
2 years ago
I see both points, but I think option B might be the most cost-effective solution. Placing everything in a public-cloud environment accessible from the internet could provide the centralized management the customer is looking for.
upvoted 0 times
...
Diane
2 years ago
C looks like it would work, but having a database and console in each site seems a bit overkill. D seems like a good middle ground.
upvoted 0 times
Stephaine
2 years ago
Yeah, D seems like a good balance between having everything in one place and spreading it out.
upvoted 0 times
...
Fanny
2 years ago
C sounds like it might be too much, D seems like a good compromise.
upvoted 0 times
...
Lucia
2 years ago
D) Place the Traps database and ESM Console in one of the major sites, and one ESM core server in each of the three major sites.
upvoted 0 times
...
Mozell
2 years ago
C) Place a Traps database, ESM Console and an ESM core server in each of the three large sites.
upvoted 0 times
...
...
Howard
2 years ago
Haha, I bet the IT team is just hoping nobody picks option A and forces everyone to use the VPN all the time. That would be a nightmare!
upvoted 0 times
Freeman
2 years ago
Yeah, option C seems like a more practical solution for their environment.
upvoted 0 times
...
Quentin
2 years ago
I agree, forcing everyone to use VPN all the time would definitely cause some headaches.
upvoted 0 times
...
Krystal
2 years ago
Option A sounds like a disaster waiting to happen. I hope they go with a different choice.
upvoted 0 times
...
...
German
2 years ago
I disagree, I believe option D is more efficient. Placing the Traps database and ESM Console in one major site, and one ESM core server in each major site makes more sense.
upvoted 0 times
...
Elke
2 years ago
B is an interesting cloud-based approach, but I'm not sure I'm comfortable with the ESM cores being accessible from the internet. That could open up some security concerns.
upvoted 0 times
Alease
2 years ago
Definitely, it's important to find a solution that balances security and efficiency.
upvoted 0 times
...
Carolynn
2 years ago
That makes sense, having a server in each major site would help with minimizing network traffic.
upvoted 0 times
...
Howard
2 years ago
I think option C would be a good compromise, with a server in each major site.
upvoted 0 times
...
Vanna
2 years ago
I agree, security should be the top priority in this situation.
upvoted 0 times
...
...
Avery
2 years ago
I think option C would be best, with a Traps database, ESM Console, and ESM core server in each of the three large sites.
upvoted 0 times
...
Bernardine
2 years ago
Option D seems like the most logical choice. Centralizing the database and console while distributing the core servers makes sense to reduce network traffic between sites.
upvoted 0 times
Cassie
2 years ago
I agree, it would help in reducing network traffic between the major sites.
upvoted 0 times
...
Ernie
2 years ago
Option D seems like the most logical choice.
upvoted 0 times
...
...

Save Cancel