Paloalto Networks PCNSA - Palo Alto Networks Certified Network Security Administrator (PAN-OS 10.0)

Paloalto Networks PCNSA Premium Access Download Demo

Page: 10 / 11
Total 364 questions

Which two Palo Alto Networks security management tools provide a consolidated creation of policies, centralized management and centralized threat intelligence. (Choose two.)

GlobalProtect

Panorama

Aperture

AutoFocus

Question # 92

What must be configured before setting up Credential Phishing Prevention?

Anti Phishing Block Page

Threat Prevention

Anti Phishing profiles

User-ID

Question # 93

Given the cyber-attack lifecycle diagram identify the stage in which the attacker can run malicious code against a vulnerability in a targeted machine.

Exploitation

Installation

Reconnaissance

Act on the Objective

Question # 94

Which information is included in device state other than the local configuration?

uncommitted changes

audit logs to provide information of administrative account changes

system logs to provide information of PAN-OS changes

device group and template settings pushed from Panorama

Question # 95

Which type of address object is "10 5 1 1/0 127 248 2"?

IP subnet

IP wildcard mask

IP netmask

IP range

Question # 96

Which DNS Query action is recommended for traffic that is allowed by Security policy and matches Palo Alto Networks Content DNS Signatures?

block

sinkhole

alert

allow

Question # 97

Which component is a building block in a Security policy rule?

decryption profile

destination interface

timeout (min)

application

Question # 98

Review the Screenshot:

Given the network diagram, traffic must be permitted for SSH and MYSQL from the DMZ to the SERVER zones, crossing two firewalls. In addition, traffic should be permitted from the

SERVER zone to the DMZ on SSH only.

Which rule group enables the required traffic?