ExamGecko
Login
Home / Palo Alto Networks / PCNSA / List of questions
Ask Question

Palo Alto Networks PCNSA Practice Test - Questions Answers, Page 33

Question list
Search
Open VPLUS File
Convert VPLUS to PDF

Related questions

An administrator is updating Security policy to align with best practices. Which Policy Optimizer feature is shown in the screenshot below?
A security administrator has configured App-ID updates to be automatically downloaded and installed. The company is currently using an application identified by App-ID as SuperApp_base. On a content update notice, Palo Alto Networks is adding new app signatures labeled SuperApp_chat and SuperApp_download, which will be deployed in 30 days. Based on the information, how is the SuperApp traffic affected after the 30 days have passed?
Which type of DNS signatures are used by the firewall to identify malicious and command-and-control domains?
Which action would an administrator take to ensure that a service object will be available only to the selected device group?
Which firewall plane provides configuration, logging, and reporting functions on a separate processor?
Review the Screenshot: Given the network diagram, traffic must be permitted for SSH and MYSQL from the DMZ to the SERVER zones, crossing two firewalls. In addition, traffic should be permitted from the SERVER zone to the DMZ on SSH only. Which rule group enables the required traffic? A) B) C) D)
An administrator needs to add capability to perform real-time signature lookups to block or sinkhole all known malware domains. Which type of single unified engine will get this result?
Which order of steps is the correct way to create a static route?
Which security profile will provide the best protection against ICMP floods, based on individual combinations of a packet`s source and destination IP address?
What are three valid source or D=destination conditions available as Security policy qualifiers? (Choose three.)

Question 321

Report
Export
Collapse

Within a WildFire Analysis Profile, what match criteria can be defined to forward samples for analysis?

Become a Premium Member for full access
  Unlock Premium Member

Question 322

Report
Export
Collapse

What must first be created on the firewall for SAML authentication to be configured?

Become a Premium Member for full access
  Unlock Premium Member

Question 323

Report
Export
Collapse

Which two options does the firewall use to dynamically populate address group members? (Choose two.)

Become a Premium Member for full access
  Unlock Premium Member

Question 324

Report
Export
Collapse

What two actions can be taken when implementing an exception to an External Dynamic List? (Choose two.)

Become a Premium Member for full access
  Unlock Premium Member

Question 325

Report
Export
Collapse

Which feature enables an administrator to review the Security policy rule base for unused rules?

Become a Premium Member for full access
  Unlock Premium Member

Question 326

Report
Export
Collapse

An administrator should filter NGFW traffic logs by which attribute column to determine if the entry is for the start or end of the session?

Become a Premium Member for full access
  Unlock Premium Member

Question 327

Report
Export
Collapse

What is the default action for the SYN Flood option within the DoS Protection profile?

Become a Premium Member for full access
  Unlock Premium Member

Question 328

Report
Export
Collapse

Which Security policy set should be used to ensure that a policy is applied first?

Become a Premium Member for full access
  Unlock Premium Member

Question 329

Report
Export
Collapse

Which type of DNS signatures are used by the firewall to identify malicious and command-and-control domains?

Become a Premium Member for full access
  Unlock Premium Member

Question 330

Report
Export
Collapse

Which three types of entries can be excluded from an external dynamic list (EDL)? (Choose three.)

Become a Premium Member for full access
  Unlock Premium Member
Total 362 questions
Go to page: of 37