A prospective customer wants to deploy VM-Series firewalls in their on-premises data center, CN-Series firewalls in Azure, and Cloud NGFWs in Amazon Web Services (AWS). They also require centralized management.
Which solution meets the requirements?
Which three statements describe the functionality of a Dynamic Address Group in Security policy? (Choose three.)
Which public cloud provider requires the creation of subnets that are dedicated to Cloud NGFW endpoints?
Which three capabilities and characteristics are shared by the deployments of Cloud NGFW for Azure and VM-Series firewalls? (Choose three.)
A company that purchased software NGFW credits from Palo Alto Networks has made a decision on the number of virtual machines (VMs) and licenses they wish to deploy in AWS cloud.
How are the VM licenses created?
A systems engineer (SE) is informed by the primary contact at a bank of an unused balance of 15,000 software NGFW flexible credits the bank does not want to lose when they expire in 1.5 years. The SE is told that the bank's new risk and compliance officer is concerned that its operation is too permissive when allowing its servers to send traffic to SaaS vendors. Currently, its AWS and Azure VM-Series firewalls only use Advanced Threat Prevention.
What should the SE recommend to address the customer's concerns?
Why should a customer use advanced versions of Cloud-Delivered Security Services (CDSS) subscriptions compared to legacy versions when creating or editing a deployment profile?
(e.g., using Advanced Threat Prevention instead of Threat Prevention.)
Which two public cloud service provider (CSP) environments offer, through their marketplace, a Cloud NGFW under the CSP's own brand name? (Choose two.)
Which tool can be used to deploy a CN-Series firewall?
Tags can be created for which three objects? (Choose three.)