U.S. Independence Day Deal! Unlock 25% OFF Today – Limited-Time Offer - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions

Palo Alto Networks PSE-Strata Exam - Topic 1 Question 25 Discussion

Which two features are found in a Palo Alto Networks NGFW but are absent in a legacy firewall product? (Choose two.)
B) Policy match is based on application and C) Identification of application is possible on any port
A) Traffic is separated by zones
D) Traffic control is based on IP port, and protocol

Palo Alto Networks PSE-Strata Exam - Topic 1 Question 25 Discussion

Actual exam question for Palo Alto Networks's PSE-Strata exam
Question #: 25
Topic #: 1
[All PSE-Strata Questions]

Which two features are found in a Palo Alto Networks NGFW but are absent in a legacy firewall product? (Choose two.)

Show Suggested Answer Hide Answer
Suggested Answer: B, C

Contribute your Thoughts:

0/2000 characters
Roosevelt
8 months ago
Wow, I had no idea NGFWs were that advanced!
upvoted 0 times
...
Ronnie
8 months ago
Really? I thought some legacy firewalls could do application identification too.
upvoted 0 times
...
Catina
8 months ago
I agree with B and C, legacy firewalls can't keep up!
upvoted 0 times
...
Edmond
8 months ago
I think A is also a key feature, but not as critical as B and C.
upvoted 0 times
...
Dannie
8 months ago
Definitely B and C! Modern firewalls are way smarter.
upvoted 0 times
...
Alisha
9 months ago
I remember that NGFWs can identify applications on any port, so I think C is a strong candidate. But I’m torn between B and D for the second choice.
upvoted 0 times
...
Tresa
9 months ago
I recall practicing a question similar to this, and I think A is about zones, which is a newer concept in NGFWs. But I’m not completely confident about the second option.
upvoted 0 times
...
Allene
9 months ago
I'm not so sure about the options. I feel like both C and D could be features of legacy firewalls too, but I think C might be more specific to NGFWs.
upvoted 0 times
...
Delmy
9 months ago
I think option B is definitely one of the features. I remember studying how NGFWs can match policies based on applications rather than just ports.
upvoted 0 times
...
Irma
9 months ago
This looks like a pretty straightforward question on route distinguishers. I'm pretty confident I can handle this one.
upvoted 0 times
...
Aracelis
9 months ago
I'm a little confused by this question. What exactly does "containing" a malicious SSID mean, and how would that affect connectivity? I'll have to think this through carefully.
upvoted 0 times
...
Lovetta
9 months ago
This looks like a pretty straightforward question about ensuring network continuity. I think the key is to consider the options and determine which one would best maintain the connection between the LANs and the WAN.
upvoted 0 times
...
Marion
9 months ago
Option A seems like a good starting point, using historical data to understand past issues. But I also think the business priorities and SLAs in option C are important to consider. I'll need to weigh the pros and cons of each approach.
upvoted 0 times
...
Phil
9 months ago
I've worked with Azure Databricks before, so I'm confident this statement is accurate. I'll go ahead and select "No change is needed" for this one.
upvoted 0 times
...

Save Cancel