ExamGecko
Login
Home / Palo Alto Networks / PCNSA / List of questions
Ask Question

Palo Alto Networks PCNSA Practice Test - Questions Answers, Page 32

Add to Whishlist

List of questions

Question 311

Report Export Collapse

When a security rule is configured as Intrazone, which field cannot be changed?

Become a Premium Member for full access
  Unlock Premium Member

Question 312

Report Export Collapse

In which two Security Profiles can an action equal to the block IP feature be configured? (Choose two.)

Become a Premium Member for full access
  Unlock Premium Member

Question 313

Report Export Collapse

In which section of the PAN-OS GUI does an administrator configure URL Filtering profiles?

Become a Premium Member for full access
  Unlock Premium Member

Question 314

Report Export Collapse

What are three valid source or D=destination conditions available as Security policy qualifiers? (Choose three.)

Become a Premium Member for full access
  Unlock Premium Member

Question 315

Report Export Collapse

Which feature enables an administrator to review the Security policy rule base for unused rules?

Become a Premium Member for full access
  Unlock Premium Member

Question 316

Report Export Collapse

A systems administrator momentarily loses track of which is the test environment firewall and which is the production firewall. The administrator makes changes to the candidate configuration of the production firewall, but does not commit the changes. In addition, the configuration was not saved prior to

making the changes.

Which action will allow the administrator to undo the changes?

Become a Premium Member for full access
  Unlock Premium Member

Question 317

Report Export Collapse

What is used to monitor Security policy applications and usage?

Become a Premium Member for full access
  Unlock Premium Member

Question 318

Report Export Collapse

What is a default setting for NAT Translated Packets when the destination NAT translation is selected as Dynamic IP (with session distribution)?

Become a Premium Member for full access
  Unlock Premium Member

Question 319

Report Export Collapse

Which table for NAT and NPTv6 (IPv6-to-IPv6 Network Prefix Translation) settings is available only on Panorama?

Become a Premium Member for full access
  Unlock Premium Member

Question 320

Report Export Collapse

Which three Ethernet interface types are configurable on the Palo Alto Networks firewall? (Choose three.)

Become a Premium Member for full access
  Unlock Premium Member
Total 362 questions
Go to page: of 37
Open VPLUS File
Convert VPLUS to PDF

Related questions

An administrator is updating Security policy to align with best practices. Which Policy Optimizer feature is shown in the screenshot below?
A security administrator has configured App-ID updates to be automatically downloaded and installed. The company is currently using an application identified by App-ID as SuperApp_base. On a content update notice, Palo Alto Networks is adding new app signatures labeled SuperApp_chat and SuperApp_download, which will be deployed in 30 days. Based on the information, how is the SuperApp traffic affected after the 30 days have passed?
Which type of DNS signatures are used by the firewall to identify malicious and command-and-control domains?
Which action would an administrator take to ensure that a service object will be available only to the selected device group?
Which firewall plane provides configuration, logging, and reporting functions on a separate processor?
Review the Screenshot: Given the network diagram, traffic must be permitted for SSH and MYSQL from the DMZ to the SERVER zones, crossing two firewalls. In addition, traffic should be permitted from the SERVER zone to the DMZ on SSH only. Which rule group enables the required traffic? A) B) C) D)
An administrator needs to add capability to perform real-time signature lookups to block or sinkhole all known malware domains. Which type of single unified engine will get this result?
Which order of steps is the correct way to create a static route?
Which security profile will provide the best protection against ICMP floods, based on individual combinations of a packet`s source and destination IP address?
What are three valid source or D=destination conditions available as Security policy qualifiers? (Choose three.)