PCNSA Exam Dumps - Palo Alto Networks Certified Network Security Administrator (PAN-OS 10.0)

Go to page:

<< First
Prev
1
2
3
4
5
6
7
8
9
10
Next
Last >>

Question # 41

When is the content inspection performed in the packet flow process?

after the application has been identified

after the SSL Proxy re-encrypts the packet

before the packet forwarding process

before session lookup

Full Access

Question # 42

What must be configured for the firewall to access multiple authentication profiles for external services to authenticate a non-local account?

authentication sequence

LDAP server profile

authentication server list

authentication list profile

Full Access

Question # 43

Starting with PAN-OS version 9.1, application dependency information is now reported in which two locations? (Choose two.)

on the App Dependency tab in the Commit Status window

on the Policy Optimizer's Rule Usage page

C on the Application tab in the Security Policy Rule creation window

on the Objects > Applications browser pages

Full Access

Question # 44

Which firewall feature do you need to configure to query Palo Alto Networks service updates over a data-plane interface instead of the management interface?

Data redistribution

Dynamic updates

SNMP setup

Service route

Full Access

Question # 45

An administrator would like to override the default deny action for a given application and instead would like to block the traffic and send the ICMP code "communication with the destination is administratively prohibited"

Which security policy action causes this?

Drop

Drop, send ICMP Unreachable

Reset both

Reset server

Full Access

Question # 46

Which license is required to use the Palo Alto Networks built-in IP address EDLs?

DNS Security

Threat Prevention

WildFire

SD-Wan