Winter Sale Special Limited Time 65% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code: v4s65

PCNSA Exam Dumps - Palo Alto Networks Certified Network Security Administrator (PAN-OS 10.0)

Go to page:
Question # 33

Which type of DNS signatures are used by the firewall to identify malicious and command-and-control domains?

A.

DNS Malicious signatures

B.

DNS Malware signatures

C.

DNS Block signatures

D.

DNS Security signatures

Full Access
Question # 34

Order the steps needed to create a new security zone with a Palo Alto Networks firewall.

Full Access
Question # 35

What is a recommended consideration when deploying content updates to the firewall from Panorama?

A.

Content updates for firewall A/P HA pairs can only be pushed to the active firewall.

B.

Content updates for firewall A/A HA pairs need a defined master device.

C.

Before deploying content updates, always check content release version compatibility.

D.

After deploying content updates, perform a commit and push to Panorama.

Full Access
Question # 36

Which Palo Alto network security operating platform component provides consolidated policy creation and centralized management?

A.

Prisma SaaS

B.

Panorama

C.

AutoFocus

D.

GlobalProtect

Full Access
Question # 37

An administrator wants to reference the same address object in Security policies on 100 Panorama managed firewalls, across 10 device groups and five templates.

Which configuration action should the administrator take when creating the address object?

A.

Ensure that the Shared option is checked.

B.

Ensure that the Shared option is cleared.

C.

Ensure that Disable Override is cleared.

D.

Tag the address object with the Global tag.

Full Access
Question # 38

Based on the security policy rules shown, ssh will be allowed on which port?

A.

any port

B.

same port as ssl and snmpv3

C.

the default port

D.

only ephemeral ports

Full Access
Question # 39

A systems administrator momentarily loses track of which is the test environment firewall and which is the production firewall. The administrator makes changes to the candidate configuration of the production firewall, but does not commit the changes. In addition, the configuration was not saved prior to

making the changes.

Which action will allow the administrator to undo the changes?

A.

Load configuration version, and choose the first item on the list.

B.

Load named configuration snapshot, and choose the first item on the list.

C.

Revert to last saved configuration.

D.

Revert to running configuration.

Full Access
Question # 40

By default, which action is assigned to the interzone-default rule?

A.

Reset-client

B.

Reset-server

C.

Deny

D.

Allow

Full Access
Go to page: