This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences

which answer is right?

cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements
Please sign in to see details of an important advisory in our Customer Advisories area.

which answer is right?

Radmin_85
L4 Transporter

‎05-31-2018 10:51 AM

A company needs to preconfigure firewalls to be sent to remote sites with the least amount
of reconfiguration. Once deployed, each firewall must establish secure tunnels back to multiple regional data centers to include the future regional data centers.Which VPN configuration would adapt to changes when deployed to the future site?

 

A. Preconfigured GlobalProtect satellite
B. Preconfigured GlobalProtect client
C. Preconfigured IPsec tunnels

D.Preconfigured PPTP Tunnels

 

I would like to find the correct answer for this question

 

4 people had this problem.
0 Likes Likes
4 REPLIES 4

BPry
Cyber Elite
Cyber Elite

‎05-31-2018 11:01 AM

@Radmin_85,

Are you trying to get answers for your ACE test 😜

The answer that Palo would be looking for is A. If the GlobalProtect Satellite configuration is done correctly it's vastly easier than having to preconfigure IPsec Tunnels. 

0 Likes Likes

Radmin_85
L4 Transporter
In response to BPry

‎05-31-2018 11:17 AM

Why not D ?

0 Likes Likes

BPry
Cyber Elite
Cyber Elite
In response to Radmin_85

‎06-01-2018 07:33 AM

@Radmin_85,

Because this is a Palo Alto exam and they are looking for the Palo Alto answer 😉

 

Honestly though you need to know more information to properly form a tunnel when you aren't using the Satelite configuration. Once you have that configured this is honestly the best answer for doing something like this; Palo has made it super easy to deploy remote firewalls without much preconfiguration at all. 

0 Likes Likes

MelvinSical
L0 Member

‎05-14-2020 10:27 AM

Preconfigured GlobalProtect satellite

 

When a GlobalProtect satellite connects and successfully authenticates to the GlobalProtect portal, the portal delivers a satellite configuration, which specifies what gateways the satellite can connect to. If all your satellites will use the same gateway and certificate configurations, you can create a single satellite configuration to deliver to all satellites upon successful authentication. However, if you require different satellite configurations—for example if you want one group of satellites to connect to one gateway and another group of satellites to connect to a different gateway—you can create a separate satellite configuration for each. The portal will then use the enrollment username/group name or the serial number of the satellite to determine which satellite configuration to deploy. As with security rule evaluation, the portal looks for a match starting from the top of the list. When it finds a match, it delivers the corresponding configuration to the satellite.

  • 3069 Views
  • 4 replies
  • 0 Likes
Like what you see?

Show your appreciation!

Click Like if a post is helpful to you or if you just want to show your support.

Click Accept as Solution to acknowledge that the answer to your question has been provided.

The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!

These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the LIVEcommunity as a whole!

The LIVEcommunity thanks you for your participation!

LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2024 - Palo Alto Networks