Q: 10
DRAG DROP Match each feature to the DoS Protection Policy or the DoS Protection Profile. 
Drag & Drop
Discussion
Next-Generation Firewall -> Identifies/inspects all traffic, Threat Intelligence Cloud -> Analyzes/correlates/threat data, Advanced Endpoint Protection -> Inspects processes and files. I matched threat intelligence with process inspection since it does a lot of dynamic analysis in the cloud, but maybe that's supposed to be endpoint. Correct me if off.
Yeah this is the right mapping: Next-Gen Firewall blocks traffic at the network layer, Threat Intelligence Cloud does the analytics correlation part, Advanced Endpoint Protection handles stuff on endpoints. Pretty sure this matches how Palo separates features, but correct me if I'm off.
Actually, I'd map "Inspects processes and files..." to Threat Intelligence Cloud instead of Endpoint Protection. Feels like this is a common trap, since the cloud does tons of analysis too. Pretty sure that's how they split it, but could be wrong.
Option A and B, not C. Usernames/passwords trip people up but they're not predefined patterns for Data Filtering.
Don’t think it’s C. A and B
A and B tbh. Credit card numbers and SSNs are both built-in data patterns, but usernames/passwords aren’t part of the predefined filters. D trips people up-it’s more for threat prevention, not data filtering.
Its A and C. Official guide and the practice exams help with questions like this.
Be respectful. No spam.
