Palo Alto Networks PCNSA Practice Test - Questions Answers, Page 11

Which license must an administrator acquire prior to downloading Antivirus updates for use with the firewall?

Which definition describes the guiding principle of the zero-trust architecture?

Four configuration choices are listed, and each could be used to block access to a specific URL. If you configured each choices to block the sameURL then which choice would be the last to block access to the URL?

The CFO found a malware infected USB drive in the parking lot, which when inserted infected their corporate laptop the malware contacted a known command-and-control server which exfiltrating corporate data.

Which Security profile feature could have been used to prevent the communications with the command-and-control server?

Which two features can be used to tag a user name so that it is included in a dynamic user group?

(Choose two)

Based on the security policy rules shown, ssh will be allowed on which port?

Which action results in the firewall blocking network traffic with out notifying the sender?

All users from the internal zone must be allowed only Telnet access to a server in the DMZ zone.

Complete the two empty fields in the Security Policy rules that permits only this type of access.

Source Zone: Internal Destination Zone: DMZ Zone Application: _________? Service: ____________?

Action: allow

Choose two.

Which type of administrative role must you assign to a firewall administrator account, if the account must include a custom set of firewall permissions?