ExamGecko
Login
Home / Palo Alto Networks / PCNSA / List of questions
Ask Question

Palo Alto Networks PCNSA Practice Test - Questions Answers, Page 35

Add to Whishlist

List of questions

Question 341

Report Export Collapse

Where in Panorama Would Zone Protection profiles be configured?

Become a Premium Member for full access
  Unlock Premium Member

Question 342

Report Export Collapse

Based on the image provided, which two statements apply to the Security policy rules? (Choose two.)

Palo Alto Networks PCNSA image Question 342 54157 09232024001155000000

Become a Premium Member for full access
  Unlock Premium Member

Question 343

Report Export Collapse

How would a Security policy need to be written to allow outbound traffic using Secure Shell (SSH) to destination ports tcp/22 and tcp/4422?

Become a Premium Member for full access
  Unlock Premium Member

Question 344

Report Export Collapse

Which feature must be configured to enable a data plane interface to submit DNS queries originated from the firewall on behalf of the control plane?

Become a Premium Member for full access
  Unlock Premium Member

Question 345

Report Export Collapse

An administrator creates a new Security policy rule to allow DNS traffic from the LAN to the DMZ zones. The administrator does not change the rule type from its default value.

What type of Security policy rule is created?

Become a Premium Member for full access
  Unlock Premium Member

Question 346

Report Export Collapse

When HTTPS for management and GlobalProtect are enabled on the same data plane interface, which TCP port is used for management access?

Become a Premium Member for full access
  Unlock Premium Member

Question 347

Report Export Collapse

An administrator manages a network with 300 addresses that require translation. The administrator configured NAT with an address pool of 240 addresses and found that connections from addresses that needed new translations were being dropped.

Which type of NAT was configured?

Become a Premium Member for full access
  Unlock Premium Member

Question 348

Report Export Collapse

What are the two main reasons a custom application is created? (Choose two.)

Become a Premium Member for full access
  Unlock Premium Member

Question 349

Report Export Collapse

What Policy Optimizer policy view differ from the Security policy do?

Become a Premium Member for full access
  Unlock Premium Member

Question 350

Report Export Collapse

How does the Policy Optimizer policy view differ from the Security policy view?

Become a Premium Member for full access
  Unlock Premium Member
Total 362 questions
Go to page: of 37
Open VPLUS File
Convert VPLUS to PDF

Related questions

An administrator is updating Security policy to align with best practices. Which Policy Optimizer feature is shown in the screenshot below?
A security administrator has configured App-ID updates to be automatically downloaded and installed. The company is currently using an application identified by App-ID as SuperApp_base. On a content update notice, Palo Alto Networks is adding new app signatures labeled SuperApp_chat and SuperApp_download, which will be deployed in 30 days. Based on the information, how is the SuperApp traffic affected after the 30 days have passed?
Which type of DNS signatures are used by the firewall to identify malicious and command-and-control domains?
Which action would an administrator take to ensure that a service object will be available only to the selected device group?
Which firewall plane provides configuration, logging, and reporting functions on a separate processor?
Review the Screenshot: Given the network diagram, traffic must be permitted for SSH and MYSQL from the DMZ to the SERVER zones, crossing two firewalls. In addition, traffic should be permitted from the SERVER zone to the DMZ on SSH only. Which rule group enables the required traffic? A) B) C) D)
An administrator needs to add capability to perform real-time signature lookups to block or sinkhole all known malware domains. Which type of single unified engine will get this result?
Which order of steps is the correct way to create a static route?
Which security profile will provide the best protection against ICMP floods, based on individual combinations of a packet`s source and destination IP address?
What are three valid source or D=destination conditions available as Security policy qualifiers? (Choose three.)