PSE-SoftwareFirewall 無料問題集「Palo Alto Networks Systems Engineer (PSE): Software Firewall Professional」

（A）OCSP

（B）Advanced URL Filtering (AURLF)

（C）WildFire

（D）Secure Sockets Layer (SSL) Inbound Inspection

（A）VXLAN or NVGRE traffic is terminated and inspected for translation to VLANs.

（B）Service graphs are configured to allow their deployment.

（C）SDN code hooks can help detonate malicious file samples designed to detect virtual environments.

（D）Traffic can be automatically redirected using static address objects.

（A）Adding a backup HA1 interface

（B）Bundling multiple interfaces in an aggregated interface group and assigning HA2

（C）Using the heartbeat backup

（D）Sending heartbeats across the HA2 interfaces

（A）It protects data center and internet gateway deployments.

（B）It allows for automatic deployment, provisioning, and immediate policy enforcement without any manual intervention.

（C）It ensures consistent security across the entire environment.

（D）It allows extension of Zero Trust Network Security to the most remote locations and smallest branches.

（A）HSRP

（B）VRRP

（C）Floating IP address

（D）ARP load sharing

（A）Threat Prevention

（B）Data loss prevention (DLP)

（C）Advanced URL Filtering (AURLF)

（D）DNS Security

（A）They function differently based on whether they are located inside or outside of the cluster.

（B）They do not scale independently of the Kubernetes cluster.

（C）They are managed by another entity when located inside the cluster.

（D）They are located outside the cluster and have no visibility into application-level cluster traffic.