Palo Alto Networks Exam PSE-SoftwareFirewall Topic 2 Question 15 Discussion

Actual exam question for Palo Alto Networks's PSE-SoftwareFirewall exam

Question #: 15
Topic #: 2

[All PSE-SoftwareFirewall Questions]

How are Palo Alto Networks Next-Generation Firewalls (NGFWs) deployed within a Cisco ACI architecture?

ATraffic can be automatically redirected using static address objects.

BVXLAN or NVGRE traffic is terminated and inspected for translation to VLANs.

CService graphs are configured to allow their deployment.

DSDN code hooks can help detonate malicious file samples designed to detect virtual environments.

Show Suggested Answer

Suggested Answer: C

Within a Cisco ACI architecture, Palo Alto Networks Next-Generation Firewalls (NGFWs) are deployed using service graphs. Service graphs in Cisco ACI define the sequence of network services that traffic must pass through. By configuring service graphs, administrators can seamlessly integrate Palo Alto Networks firewalls into the fabric to inspect and secure traffic flows.

Palo Alto Networks and Cisco ACI Integration Guide: Service Graphs Integration

Cisco ACI Service Graph Documentation: Service Graphs

by Omega at Oct 22, 2024, 11:44 AM

Limited Time Offer

25%

Off

Get Premium PSE-SoftwareFirewall Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

Submit Cancel

Ocie

1 months ago

Ah, the age-old question of how to deploy Palo Alto Networks NGFWs in a Cisco ACI environment. I'll go with C) Service graphs, because who doesn't love a good graph?

upvoted 0 times

...

Kristel

1 months ago

D) SDN code hooks can help detonate malicious file samples designed to detect virtual environments. Interesting, but I don't think this is the right approach for Palo Alto Networks NGFWs in a Cisco ACI architecture.

upvoted 0 times