New Year Sale 2026! Hurry Up, Grab the Special Discount - Save 25% - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions
Mail Us support@pass4success.com
Location US
Mob_nav_barsMENU

Palo Alto Networks PSE-SoftwareFirewall Exam - Topic 1 Question 2 Discussion

Actual exam question for Palo Alto Networks's PSE-SoftwareFirewall exam
Question #: 2
Topic #: 1
[All PSE-SoftwareFirewall Questions]

Which two configuration options does Palo Alto Networks recommend for outbound high availability (HA) design in Amazon Web Services using a VM-Series firewall? (Choose two.)

Show Suggested Answer Hide Answer
Suggested Answer: B, D

Transit Gateway and Security VPC:

Using a transit gateway in conjunction with a Security VPC is a recommended design for outbound high availability (HA) in AWS. This configuration ensures that traffic can be routed efficiently and securely through the VM-Series firewalls deployed in the Security VPC.


Palo Alto Networks AWS Design Guide

Transit VPC and Security VPC:

Another recommended approach is to use a Transit VPC along with a Security VPC. The Transit VPC provides a centralized routing hub, while the Security VPC hosts the VM-Series firewalls to inspect and secure outbound traffic.

Palo Alto Networks AWS Transit VPC Guide

by Slyvia at Jul 12, 2024, 08:41 AM

Limited Time Offer

25%

Off

Get Premium PSE-SoftwareFirewall Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

0/2000 characters
Submit Cancel
Sherrell
3 months ago
Just to clarify, are we sure about those options?
upvoted 0 times
...
Elvera
3 months ago
I thought active-passive was the safer option, though.
upvoted 0 times
...
Katlyn
3 months ago
Wait, is active-active really recommended? Sounds risky.
upvoted 0 times
...
Sylvia
4 months ago
I agree, B and D make the most sense!
upvoted 0 times
...
Tennie
4 months ago
I think it's B and D for sure.
upvoted 0 times
...
Kent
4 months ago
I vaguely remember that the Transit VPC was discussed, but I can't remember if it was paired with the Security VPC or something else entirely.
upvoted 0 times
...
Celestina
4 months ago
I’m leaning towards the traditional active-active HA setup, but I’m not confident about the second option. Maybe it’s the Security VPC?
upvoted 0 times
...
Alishia
4 months ago
I feel like the transit gateway option was mentioned in a practice question, but I can't recall if it was specifically for HA design.
upvoted 0 times
...
Jeannetta
5 months ago
I think I remember something about active-passive HA being a common recommendation, but I'm not entirely sure if it's the best choice for AWS.
upvoted 0 times
...
Melinda
5 months ago
This looks tricky, but I'll read through the question slowly and try to eliminate the options that don't seem quite right.
upvoted 0 times
...
Claribel
5 months ago
I remember the instructor mentioning something about traditional HA and transit gateway approaches. I'll try to recall those details.
upvoted 0 times
...
Weldon
5 months ago
Okay, let's see... I know Palo Alto recommends HA designs for AWS, so I'll focus on that. The options seem to be talking about different VPC setups.
upvoted 0 times
...
Colette
5 months ago
Hmm, I'm a bit unsure about the differences between the options here. I'll need to think it through carefully.
upvoted 0 times
...
Mindy
5 months ago
I think I've seen this topic before in the course materials, so I'm feeling pretty confident about this one.
upvoted 0 times
...
Chauncey
5 months ago
I think the alert will show "Ear J" because of how the variables are concatenated, but I'm not entirely sure.
upvoted 0 times
...
Stefan
5 months ago
Hmm, I'm a bit confused. I know RAID 1 is for mirroring, but I'm not sure if that's the specific value used in Linux software RAID. I'll have to think this through.
upvoted 0 times
...
Carlene
2 years ago
I'm not sure about option D, Transit VPC and Security VPC. I think it might not provide the same level of high availability as the other options.
upvoted 0 times
...
Laurena
2 years ago
I'm going to have to go with B) Transit gateway and Security VPC. It's the Palo Alto recommended solution, so it must be the best choice, right?
upvoted 0 times
...
Shantell
2 years ago
D) Transit VPC and Security VPC? Sounds like a lot of moving parts. I'd rather keep it simple with the traditional HA options.
upvoted 0 times
Veta
1 year ago
D) Transit VPC and Security VPC can provide additional security measures for outbound traffic.
upvoted 0 times
...
Lore
2 years ago
C) Traditional active-passive HA is also a good option to consider.
upvoted 0 times
...
Aide
2 years ago
A) Traditional active-active HA is a solid choice for outbound high availability.
upvoted 0 times
...
...
Golda
2 years ago
I agree with Glenna, traditional active-active HA and Transit gateway with Security VPC make sense for outbound high availability.
upvoted 0 times
...
Garry
2 years ago
I'm going with A) Traditional active-active HA. It's the classic HA setup and should work just fine in the cloud too.
upvoted 0 times
...
Queen
2 years ago
C) Traditional active-passive HA seems like the more straightforward option. Why complicate things with all these VPCs and gateways?
upvoted 0 times
Melinda
2 years ago
A) Traditional active-active HA is more complex but offers better load balancing.
upvoted 0 times
...
Dominque
2 years ago
B) Transit gateway and Security VPC provide additional security and flexibility.
upvoted 0 times
...
Elfrieda
2 years ago
C) Traditional active-passive HA is simpler to set up and manage.
upvoted 0 times
...
Carlene
2 years ago
A) Traditional active-active HA is recommended for better performance and redundancy.
upvoted 0 times
...
...
Glenna
2 years ago
I think option A and B are the recommended configuration options.
upvoted 0 times
...
Lindsey
2 years ago
I think B) Transit gateway and Security VPC is the way to go. It's the most scalable and reliable solution for outbound HA in AWS.
upvoted 0 times
Joni
2 years ago
Yeah, I think so too. It provides a good balance between scalability and reliability.
upvoted 0 times
...
Ilene
2 years ago
I agree, B) Transit gateway and Security VPC is definitely the most scalable option.
upvoted 0 times
...
...

Save Cancel