Palo Alto Networks PCNSE Practice Test - Questions Answers, Page 36

Which three options does Panorama offer for deploying dynamic updates to its managed devices? (Choose three.)

Given the following snippet of a WildFire submission log, did the end user successfully download a file?

Which two key exchange algorithms consume the most resources when decrypting SSL traffic? (Choose two.)

An engineer troubleshoots a high availability (HA) link that is unreliable.

Where can the engineer view what time the interface went down?

An engineer troubleshoots a Panorama-managed firewall that is unable to reach the DNS servers configured via a global template. As a troubleshooting step, the engineer needs to configure a local DNS server in place of the template value.

Which two actions can be taken to ensure that only the specific firewall is affected during this process? (Choose two )

If an administrator wants to apply QoS to traffic based on source, what must be specified in a QoS policy rule?

An engineer is configuring a Protection profile to defend specific endpoints and resources against malicious activity.

The profile is configured to provide granular defense against targeted flood attacks for specific critical systems that are accessed by users from the internet.

Which profile is the engineer configuring?

An engineer is monitoring an active/active high availability (HA) firewall pair.

Which HA firewall state describes the firewall that is experiencing a failure of a monitored path?

You are auditing the work of a co-worker and need to verify that they have matched the Palo Alto Networks Best Practices for Anti-Spyware Profiles.

For which three severity levels should single-packet captures be enabled to meet the Best Practice standard? (Choose three.)