ExamGecko

Palo Alto Networks PCNSE Practice Test - Questions Answers, Page 43

Question list
Search
Search

List of questions

Search

Related questions











Question 421

Report
Export
Collapse

Which two are required by IPSec in transport mode? (Choose two.)

Become a Premium Member for full access
Unlock Premium Member  Unlock Premium Member

Question 422

Report
Export
Collapse

The firewall team has been asked to deploy a new Panorama server and to forward all firewall logs to this server By default, which component of the Palo Alto Networks firewall architect is responsible for log forwarding and should be checked for early signs of overutilization?

Become a Premium Member for full access
Unlock Premium Member  Unlock Premium Member

Question 423

Report
Export
Collapse

A firewall engineer needs to patch the company's Palo Alto Network firewalls to the latest version of PAN-OS. The company manages its firewalls by using panorama. Logs are forwarded to Dedicated Log Collectors, and file samples are forwarded to WildFire appliances for analysis. What must the engineer consider when planning deployment?

Become a Premium Member for full access
Unlock Premium Member  Unlock Premium Member

Question 424

Report
Export
Collapse

Which two components are required to configure certificate-based authentication to the web Ul when an administrator needs firewall access on a trusted interface'? (Choose two.)

Become a Premium Member for full access
Unlock Premium Member  Unlock Premium Member

Question 425

Report
Export
Collapse

What are three prerequisites to enable Credential Phishing Prevention over SSL? (Choose three

Become a Premium Member for full access
Unlock Premium Member  Unlock Premium Member

Question 426

Report
Export
Collapse

A new application server 192.168.197.40 has been deployed in the DMZ. There are no public IP addresses available resulting in the server sharing MAT IP 198 51 100 B8 with another OMZ serve that uses IP address 192 168 19? 60 Firewall security and NAT rules have been configured The application team has confirmed mat the new server is able to establish a secure connection to an external database with IP address 203.0.113.40. The database team reports that they are unable to establish a secure connection to 196 51 100 88 from 203.0.113.40 However it confirm a successful prig test to 198 51 100 88 Referring to the MAT configuration and traffic logs provided how can the firewall engineer resolve the situation and ensure inbound and outbound connections work concurrently for both DMZ servers?

Become a Premium Member for full access
Unlock Premium Member  Unlock Premium Member

Question 427

Report
Export
Collapse

Which statement accurately describes how web proxy is run on a firewall with multiple virtual systems?

Become a Premium Member for full access
Unlock Premium Member  Unlock Premium Member

Question 428

Report
Export
Collapse

A company wants to use GlobalProtect as its remote access VPN solution.

Which GlobalProtect features require a Gateway license?

Become a Premium Member for full access
Unlock Premium Member  Unlock Premium Member

Question 429

Report
Export
Collapse

An administrator is troubleshooting application traffic that has a valid business use case, and observes the following decryption log message: 'Received fatal alert UnknownCA from client.'

How should the administrator remediate this issue?

Become a Premium Member for full access
Unlock Premium Member  Unlock Premium Member

Question 430

Report
Export
Collapse

After configuring an IPSec tunnel, how should a firewall administrator initiate the IKE phase 1 to see if it will come up?

Become a Premium Member for full access
Unlock Premium Member  Unlock Premium Member
Total 470 questions
Go to page: of 47