It is impossible to pass Paloalto-Networks PCNSA exam without any help in the short term. Come to Passleader soon and find the most advanced, correct and guaranteed Paloalto-Networks PCNSA practice questions. You will get a surprising result by our Improve Palo Alto Networks Certified Network Security Administrator practice guides.
Paloalto-Networks PCNSA Free Dumps Questions Online, Read and Test Now.
NEW QUESTION 1
DRAG DROP
Match the Cyber-Attack Lifecycle stage to its correct description.
Solution:
Reconnaissance – stage where the attacker scans for network vulnerabilities and services that can be exploited.
Installation – stage where the attacker will explore methods such as a root kit to establish persistence
Command and Control – stage where the attacker has access to a specific server so they can communicate and pass data to and from infected devices within a network.
Act on the Objective – stage where an attacker has motivation for attacking a network to deface web property
Does this meet the goal?
- A. Yes
- B. Not Mastered
Answer: A
NEW QUESTION 2
Which User Credential Detection method should be applied within a URL Filtering Security profile to check for the submission of a valid corporate username and the associated password?
- A. Domain Credential
- B. IP User
- C. Group Mapping
- D. Valid Username Detected Log Severity
Answer: C
NEW QUESTION 3
Assume that traffic matches a Security policy rule but the attached Security Profiles is configured to block matching traffic
Which statement accurately describes how the firewall will apply an action to matching traffic?
- A. If it is an allowed rule, then the Security Profile action is applied last
- B. If it is a block rule then the Security policy rule action is applied last
- C. If it is an allow rule then the Security policy rule is applied last
- D. If it is a block rule then Security Profile action is applied last
Answer: A
NEW QUESTION 4
An administrator is troubleshooting traffic that should match the interzone-default rule. However, the administrator doesn't see this traffic in the traffic logs on the firewall. The interzone-default was never changed from its default configuration.
Why doesn't the administrator see the traffic?
- A. Traffic is being denied on the interzone-default policy.
- B. The Log Forwarding profile is not configured on the policy.
- C. The interzone-default policy is disabled by default
- D. Logging on the interzone-default policy is disabled
Answer: D
NEW QUESTION 5
Actions can be set for which two items in a URL filtering security profile? (Choose two.)
- A. Block List
- B. Custom URL Categories
- C. PAN-DB URL Categories
- D. Allow List
Answer: AD
Explanation:
https://docs.paloaltonetworks.com/pan-os/8-1/pan-os-admin/url-filtering/url-filtering-concepts/url-filtering-profile-actions
NEW QUESTION 6
What must be considered with regards to content updates deployed from Panorama?
- A. Content update schedulers need to be configured separately per device group.
- B. Panorama can only install up to five content versions of the same type for potential rollback scenarios.
- C. A PAN-OS upgrade resets all scheduler configurations for content updates.
- D. Panorama can only download one content update at a time for content updates of the same type.
Answer: D
Explanation:
Reference:https://docs.paloaltonetworks.com/panorama/9-1/panorama-admin/manage-licenses-and-updates/deploy-updates-to-firewalls-log-collectors-and-wildfire-appliances-using-panorama/schedule-a-content-update-using-panorama.html
NEW QUESTION 7
Which protocol used to map username to user groups when user-ID is configured?
- A. SAML
- B. RADIUS
- C. TACACS+
- D. LDAP
Answer: D
NEW QUESTION 8
You must configure which firewall feature to enable a data-plane interface to submit DNS queries on behalf of the control plane?
- A. Admin Role profile
- B. virtual router
- C. DNS proxy
- D. service route
Answer: A
NEW QUESTION 9
Which three configuration settings are required on a Palo Alto networks firewall management interface?
- A. default gateway
- B. netmask
- C. IP address
- D. hostname
- E. auto-negotiation
Answer: ABC
Explanation:
Reference:
https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA10g000000ClN7CAK
NEW QUESTION 10
Which administrator receives a global notification for a new malware that infects hosts. The infection will result in the infected host attempting to contact and command-and-control (C2) server.
Which security profile components will detect and prevent this threat after the firewall`s signature database has been updated?
- A. antivirus profile applied to outbound security policies
- B. data filtering profile applied to inbound security policies
- C. data filtering profile applied to outbound security policies
- D. vulnerability profile applied to inbound security policies
Answer: C
Explanation:
NEW QUESTION 11
DRAG DROP
Match the network device with the correct User-ID technology.
Answer:
Solution:
Microsoft Exchange – Server monitoring
Linux authentication – syslog monitoring
Windows Client – client probing
Citrix client – Terminal Services agent
Does this meet the goal?
- A. Yes
- B. Not Mastered
Answer: A
NEW QUESTION 12
Which User-ID agent would be appropriate in a network with multiple WAN links, limited network bandwidth, and limited firewall management plane resources?
- A. Windows-based agent deployed on the internal network
- B. PAN-OS integrated agent deployed on the internal network
- C. Citrix terminal server deployed on the internal network
- D. Windows-based agent deployed on each of the WAN Links
Answer: A
Explanation:
Another reason to choose the Windows agent over the integrated PAN-OS agent is to save processing cycles on the firewall’s management plane.
NEW QUESTION 13Why should a company have a File Blocking profile that is attached to a Security policy?
- A. To block uploading and downloading of specific types of files
- B. To detonate files in a sandbox environment
- C. To analyze file types
- D. To block uploading and downloading of any type of files
Answer: A
NEW QUESTION 14
Based on the security policy rules shown, ssh will be allowed on which port?
- A. any port
- B. same port as ssl and snmpv3
- C. the default port
- D. only ephemeral ports
Answer: C
NEW QUESTION 15
What action will inform end users when their access to Internet content is being restricted?
- A. Create a custom 'URL Category' object with notifications enabled.
- B. Publish monitoring data for Security policy deny logs.
- C. Ensure that the 'site access" setting for all URL sites is set to 'alert'.
- D. Enable 'Response Pages' on the interface providing Internet access.
Answer: D
Explanation:
Reference:https://docs.paloaltonetworks.com/pan-os/8-1/pan-os-web-interface-help/device/device-response-pages.html
NEW QUESTION 16
Which five Zero Trust concepts does a Palo Alto Networks firewall apply to achieve an integrated approach to prevent threats? (Choose five.)
- A. User identification
- B. Filtration protection
- C. Vulnerability protection
- D. Antivirus
- E. Application identification
- F. Anti-spyware
Answer: ACDEF
NEW QUESTION 17
An administrator is troubleshooting an issue with traffic that matches the intrazone-default rule, which is set to default configuration.
What should the administrator do?
Solution:
Does this meet the goal?
- A. Yes
- B. Not Mastered
Answer: A
NEW QUESTION 18
Which two Palo Alto Networks security management tools provide a consolidated creation of policies, centralized management and centralized threat intelligence. (Choose two.)
- A. GlobalProtect
- B. Panorama
- C. Aperture
- D. AutoFocus
Answer: BD
NEW QUESTION 19
An administrator would like to silently drop traffic from the internet to a ftp server. Which Security policy action should the administrator select?
- A. Reset-server
- B. Block
- C. Deny
- D. Drop
Answer: D
NEW QUESTION 20
What is the main function of Policy Optimizer?
- A. reduce load on the management plane by highlighting combinable security rules
- B. migrate other firewall vendors’ security rules to Palo Alto Networks configuration
- C. eliminate “Log at Session Start” security rules
- D. convert port-based security rules to application-based security rules
Answer: D
Explanation:
Reference:https://docs.paloaltonetworks.com/pan-os/9-0/pan-os-new-features/app-id- features/policy- optimizer.html
NEW QUESTION 21
......
Thanks for reading the newest PCNSA exam dumps! We recommend you to try the PREMIUM Dumpscollection.com PCNSA dumps in VCE and PDF here: https://www.dumpscollection.net/dumps/PCNSA/ (287 Q&As Dumps)
