Module 1 Platform and Architecture Flashcards
What are the three platforms for the Palo Alto Portfolio
Secure the enterprise, secure the cloud, secure the future.
What are the key elements to cyber security according to Palo Alto?
Provide Visibility, Reduce the Surface attack, Prevent Known Threats, and Prevent Unknown threats
What are the elements for securing the enterprise?
Panorama, Wildfire, GlobalProtect, Prisma Access, Subscription services, Stata-VM-Series and CN-Series
What is wildfire
Malware detection
What is global protect
Extends the perimeter to remote offices and mobile users
What is panorama
Centralized NGFW management and logging
What is Prisma
Provides SD-WAN access access to the cloud from remote site or remote users
What are subscription services
Provides enhanced threat services
What are Strata, VM-Series and CN series
The foundation of Palo Alto Networks
Securing the Cloud is next - what are the three cloud postures?
Prisma SaaS, Prisma Cloud and Prisma Access
What is Prisma Cloud
Continuous Security monitoring, compliance, and cloud storage across multi-cloud environments.
What is Prisma Access
Secure access from remote sites, mobile users, blah
What is Prisma SaaS
Data protection, governance and compliance to enable SaaS application adoption.
Securing the future has 5
Blah
What is single pass architecture?
SP3 engine - a packet is processed, networking functions, policy lookup, application identification and decoding and signature matching for threats and content are performed just once.
What happens on the control/management and data plane for a Palo Alto firewall?
Control plane, this is where you do configuration, logging, separate processor, RAM and hard drive. Data, we have signature matching, security processing and network processing (route lookup, MAC lookup, flow control)
What is signature matching?
Exploits, virus, spyware, SSN
What is security processing?
App-ID, User-ID, URL match, SSL/IPsec, policy match
What are the offerings for Strata appliances?
PA-series for hardware, Prisma Access (Cloud Service), and Software (VN-Series/CN-Series)
Which one deals with 5G and the IOT’s?
K2-Series firewalls, a 5-G ready platform.
Securing the future
Think, AI generate tasks
What are the five cortex securing the future apps and services
Cortex Data Lake, Cortex XDR Prevent, Cortex XDR, Cortex XSOAR, Cortex AutoFocus
What is Cortex Data Lake
Cloud based, centralized log storage for your security data
What is Cortex XDR
Prevents malware, blocks exploits and analysis suspicious patterns
What is Cortex XDR Prevent
Endpoint protection and response, behavioral backed protect to detect attacks
What is Cortex XSOAR
Response platform good for security teams
What is Cortex AutoFocus
Instant access to community based threat data.
Traffic pattern (application zone to user zone)
East to west
What is Zero Trust Architecture
Never trust, always verify. Zero trust architecture model remedies deficiencies of the perimeter only architecture.
What PA model provides a platform built for Hyper-Scale Data Center, Internet Edge deployments and Campus segmentation/
PA-5400
What is good for mid sized businesses/branch offices
PA-800
What is a good model for small sites?
PA-220
What service provides wide area networking and security serviced into a cloud based soution
Prisma Access: Secure Access Service Edge (SASE)
