PCNSE Exam Dumps - Palo Alto Networks Certified Security Engineer (PCNSE) PAN-OS 11.0

Go to page:

<< First
Prev
1
2
3
4
5
6
7
Next
Last >>

Question # 4

A company has configured a URL Filtering profile with override action on their firewall. Which two profiles are needed to complete the configuration? (Choose two)

SSL/TLS Service

HTTP Server

Decryption

Interface Management

Full Access

Question # 5

In a template, which two objects can be configured? (Choose two.)

SD-WAN path quality profile

Monitor profile

IPsec tunnel

Application group

Full Access

Question # 6

Refer to Exhibit:

An administrator can not see any Traffic logs from the Palo Alto Networks NGFW in Panorama reports. The configuration problem seems to be on the firewall. Which settings, if configured incorrectly, most likely would stop only Traffic logs from being sent from the NGFW to Panorama?

Option A

Option B

Option C

Option D

Full Access

Question # 7

An administrator has been tasked with configuring decryption policies,

Which decryption best practice should they consider?

Consider the local, legal, and regulatory implications and how they affect which traffic can be decrypted.

Decrypt all traffic that traverses the firewall so that it can be scanned for threats.

Place firewalls where administrators can opt to bypass the firewall when needed.

Create forward proxy decryption rules without Decryption profiles for unsanctioned applications.

Full Access

Question # 8

A firewall engineer creates a destination static NAT rule to allow traffic from the internet to a webserver hosted behind the edge firewall. The pre-NAT IP address of the server is 153.6 12.10, and the post-NAT IP address is 192.168.10.10. Refer to the routing and interfaces information below.