Palo Alto Networks PCNSA Practice Test - Questions Answers, Page 7
List of questions
Related questions
Question 61
Which security profile will provide the best protection against ICMP floods, based on individual combinations of a packet`s source and destination IP address?
Question 62
Which path in PAN-OS 10.0 displays the list of port-based security policy rules?
Explanation:
https://docs.paloaltonetworks.com/pan-os/9-0/pan-os-admin/app-id/security-policy-ruleoptimization/migrate-port-based-to-app-id-based-security-policy-rules.html
Question 63
Which two components are utilized within the Single-Pass Parallel Processing architecture on a Palo Alto Networks Firewall? (Choose two.)
Question 64
Which path is used to save and load a configuration with a Palo Alto Networks firewall?
Question 65
Which action related to App-ID updates will enable a security administrator to view the existing security policy rule that matches new application signatures?
Explanation:
References:
https://docs.paloaltonetworks.com/pan-os/9-0/pan-os-admin/app-id/manage-new-app-idsintroduced-incontent-releases/review-new-app-id-impact-on- existing-policy-rules
Question 66
How is the hit count reset on a rule?
Question 67
Given the topology, which zone type should interface E1/1 be configured with?
Question 68
Which interface type is part of a Layer 3 zone with a Palo Alto Networks firewall?
Question 69
Which security policy rule would be needed to match traffic that passes between the Outside zone and Inside zone, but does not match traffic that passes within the zones?
Question 70
Based on the show security policy rule would match all FTP traffic from the inside zone to the outside zone?
Question