ExamGecko
Login
Home / Palo Alto Networks / PCNSA / List of questions
Ask Question

Palo Alto Networks PCNSA Practice Test - Questions Answers, Page 31

List of questions

Question 301

Report Export Collapse

Which two addresses should be reserved to enable DNS sinkholing? (Choose two.)

Become a Premium Member for full access
  Unlock Premium Member

Question 302

Report Export Collapse

Which action can be performed when grouping rules by group tags?

Become a Premium Member for full access
  Unlock Premium Member

Question 303

Report Export Collapse

Which path in PAN-OS 11.x would you follow to see how new and modified App-IDs impact a Security policy?

Become a Premium Member for full access
  Unlock Premium Member

Question 304

Report Export Collapse

An administrator wants to enable access to www.paloaltonetworks.com while denying access to all other sites in the same category.

Which object should the administrator create to use as a match condition for the security policy rule that allows access to www.paloaltonetworks.com?

Become a Premium Member for full access
  Unlock Premium Member

Question 305

Report Export Collapse

Where does a user assign a tag group to a policy rule in the policy creation window?

Become a Premium Member for full access
  Unlock Premium Member

Question 306

Report Export Collapse

Which policy set should be used to ensure that a policy is applied just before the default security rules?

Become a Premium Member for full access
  Unlock Premium Member

Question 307

Report Export Collapse

In which two types of NAT can oversubscription be used? (Choose two.)

Become a Premium Member for full access
  Unlock Premium Member

Question 308

Report Export Collapse

Where in the PAN-OS GUI can an administrator monitor the rule usage for a specified period of time?

Become a Premium Member for full access
  Unlock Premium Member

Question 309

Report Export Collapse

Which security profile should be used to classify malicious web content?

Become a Premium Member for full access
  Unlock Premium Member

Question 310

Report Export Collapse

In order to attach an Antivirus, Anti-Spyware and Vulnerability Protection security profile to your Security Policy rules, which setting must be selected?

Become a Premium Member for full access
  Unlock Premium Member
Total 362 questions
Go to page: of 37
Open VPLUS File
Convert VPLUS to PDF

Related questions

An administrator is updating Security policy to align with best practices. Which Policy Optimizer feature is shown in the screenshot below?
A security administrator has configured App-ID updates to be automatically downloaded and installed. The company is currently using an application identified by App-ID as SuperApp_base. On a content update notice, Palo Alto Networks is adding new app signatures labeled SuperApp_chat and SuperApp_download, which will be deployed in 30 days. Based on the information, how is the SuperApp traffic affected after the 30 days have passed?
Which type of DNS signatures are used by the firewall to identify malicious and command-and-control domains?
Which action would an administrator take to ensure that a service object will be available only to the selected device group?
Which firewall plane provides configuration, logging, and reporting functions on a separate processor?
Review the Screenshot: Given the network diagram, traffic must be permitted for SSH and MYSQL from the DMZ to the SERVER zones, crossing two firewalls. In addition, traffic should be permitted from the SERVER zone to the DMZ on SSH only. Which rule group enables the required traffic? A) B) C) D)
An administrator needs to add capability to perform real-time signature lookups to block or sinkhole all known malware domains. Which type of single unified engine will get this result?
Which order of steps is the correct way to create a static route?
Which security profile will provide the best protection against ICMP floods, based on individual combinations of a packet`s source and destination IP address?
What are three valid source or D=destination conditions available as Security policy qualifiers? (Choose three.)