Nest 0 Cart
Nest Account
Popular Exams
All Categories...
Nest
Nest 0
Contact
Log In / Sign Up
Copyright 2024 © store. All rights reserved.
Home Palo Alto Networks PCNSA

Palo Alto Networks PCNSA Exam Practice Questions (P. 5)

  • Full Access (420 questions)
  • Six months of Premium Access
  • Access to one million comments
  • Seamless ChatGPT Integration
  • Ability to download PDF files
  • Anki Flashcard files for revision
  • No Captcha & No AdSense
  • Advanced Exam Configuration
Get Contributor Access
Question #41
Given the image, which two options are true about the Security policy rules. (Choose two.)

  1. A
    The Allow-Office-Programs rule is using an Application Filter.
  2. B
    In the Allow-FTP policy, FTP is allowed using App-ID.
  3. C
    The Allow-Office-Programs rule is using an Application Group.
  4. D
    The Allow-Social-Media rule allows all of Facebook's functions.

Correct Answer:
BC

Question #42
Which type of Security policy rule would match traffic flowing between the Inside zone and Outside zone, within the Inside zone, and within the Outside zone?
  1. A
    global
  2. B
    intrazone
  3. C
    interzone
  4. D
    universal

Correct Answer:
D
Reference:
https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA10g000000ClomCAC

Question #43
Which Palo Alto Networks firewall security platform provides network security for mobile endpoints by inspecting traffic deployed as internet gateways?
  1. A
    GlobalProtect
  2. B
    AutoFocus
  3. C
    Aperture
  4. D
    Panorama

Correct Answer:
A

Question #44
Which two statements are correct regarding multiple static default routes when they are configured as shown in the image? (Choose two.)

  1. A
    Path monitoring does not determine if route is useable.
  2. B
    Route with highest metric is actively used.
  3. C
    Path monitoring determines if route is useable.
  4. D
    Route with lowest metric is actively used.

Correct Answer:
CD

Question #45
Given the Cyber-Attack Lifecycle diagram, identify the stage in which the attacker can run malicious code against a targeted machine.

  1. A
    Exploitation
  2. B
    Installation
  3. C
    Reconnaissance
  4. D
    Act on Objective

Correct Answer:
A

Question #46
Which file is used to save the running configuration with a Palo Alto Networks firewall?
  1. A
    running-config.xml
  2. B
    run-config.xml
  3. C
    running-configuration.xml
  4. D
    run-configuration.xml

Correct Answer:
A

Question #47
In the example security policy shown, which two websites would be blocked? (Choose two.)

  1. A
    LinkedIn
  2. B
    Facebook
  3. C
    YouTube
  4. D
    Amazon

Correct Answer:
AB

Question #48
Which Palo Alto Networks component provides consolidated policy creation and centralized management?
  1. A
    GlobalProtect
  2. B
    Panorama
  3. C
    Prisma SaaS
  4. D
    AutoFocus

Correct Answer:
B
Reference:
https://www.paloaltonetworks.com/resources/datasheets/panorama-centralized-management-datasheet

Question #49
Which statement is true regarding a Prevention Posture Assessment?
  1. A
    The Security Policy Adoption Heatmap component filters the information by device groups, serial numbers, zones, areas of architecture, and other categories
  2. B
    It provides a set of questionnaires that help uncover security risk prevention gaps across all areas of network and security architecture
  3. C
    It provides a percentage of adoption for each assessment area
  4. D
    It performs over 200 security checks on Panorama/firewall for the assessment

Correct Answer:
B
Reference:
https://docs.paloaltonetworks.com/best-practices/8-1/data-center-best-practices/data-center-best-practice-security-policy/use-palo-alto-networks- assessment-and-review-tools

Question #50
Which five Zero Trust concepts does a Palo Alto Networks firewall apply to achieve an integrated approach to prevent threats? (Choose five.)
  1. A
    User identification
  2. B
    Filtration protection
  3. C
    Vulnerability protection
  4. D
    Antivirus
  5. E
    Application identification
  6. F
    Anti-spyware

Correct Answer:
ACDEF

Previous Questions Next Questions

All Pages