PCNSE Exam Dumps - Palo Alto Networks Certified Security Engineer (PCNSE) PAN-OS 10.0
Which setting allow a DOS protection profile to limit the maximum concurrent sessions from a source IP address?
Which three options does the WF-500 appliance support for local analysis? (Choose three)
A users traffic traversing a Palo Alto networks NGFW sometimes can reach http //www company com At other times the session times out. At other times the session times out The NGFW has been configured with a PBF rule that the user traffic matches when it goes to http://www.company.com
goes to http://www company com
How can the firewall be configured to automatically disable the PBF rule if the next hop goes down?
Which two logs on the firewall will contain authentication-related information useful for troubleshooting purpose (Choose two)
Which two actions are required to make Microsoft Active Directory users appear in a firewall traffic log? (Choose two.)
A network security engineer is asked to provide a report on bandwidth usage. Which tab in the ACC provides the information needed to create the report?
A company has a policy that denies all applications it classifies as bad and permits only application it classifies as good. The firewall administrator created the following security policy on the company's firewall.
Which interface configuration will accept specific VLAN IDs?
Which two benefits are gained from having both rule 2 and rule 3 presents? (choose two)
An administrator has left a firewall to use the data of port for all management service which there functions are performed by the data face? (Choose three.)
What must be used in Security Policy Rule that contain addresses where NAT policy applies?
A file sharing application is being permitted and no one knows what this application is used for.
How should this application be blocked?
Click the Exhibit button
An administrator has noticed a large increase in bittorrent activity. The administrator wants to determine where the traffic is going on the company.
What would be the administrator's next step?
What can missing SSL packets when performing a packet capture on dataplane interfaces?
Which two options are required on an M-100 appliance to configure it as a Log Collector? (Choose two)
Which Security Policy Rule configuration option disables antivirus and anti-spyware scanning of server-to-client flows only?
During the packet flow process, which two processes are performed in application identification? (Choose two.)
View the GlobalProtect configuration screen capture.
What is the purpose of this configuration?
If an administrator does not possess a website’s certificate, which SSL decryption mode will allow the Palo Alto networks NGFW to inspect when users browse to HTTP(S) websites?
Refer to the exhibit.
An administrator cannot see any of the Traffic logs from the Palo Alto Networks NGFW on Panorama. The configuration problem seems to be on the firewall side. Where is the best place on the Palo Alto Networks NGFW to check whether the configuration is correct?
A)
B)
C)
D)
A session in the Traffic log is reporting the application as “incomplete.†What does “incomplete†mean?
Which option enables a Palo Alto Networks NGFW administrator to schedule Application and Threat updates while applying only new content-IDs to traffic?
Which is not a valid reason for receiving a decrypt-cert-validation error?
An administrator is using Panorama and multiple Palo Alto Networks NGFWs. After upgrading all devices to the latest PAN-OS® software, the administrator enables log forwarding from the firewalls to PanoramA. Pre-existing logs from the firewalls are not appearing in PanoramA.
Which action would enable the firewalls to send their pre-existing logs to Panorama?
When configuring the firewall for packet capture, what are the valid stage types?
Which two features does PAN-OS® software use to identify applications? (Choose two)
Which User-ID method maps IP address to usernames for users connecting through a web proxy that has already authenticated the user?
The firewall is not downloading IP addresses from MineMeld. Based, on the image, what most likely is wrong?
To protect your firewall and network from single source denial of service (DoS) attacks that can overwhelm its packet buffer and cause legitimate traffic to drop, you can configure.
An administrator has been asked to configure a Palo Alto Networks NGFW to provide protection against worms and trojans. Which Security Profile type will protect against worms and trojans?
A web server is hosted in the DMZ and the server is configured to listen for incoming connections on TCP port 443. A Security policies rules allowing access from the Trust zone to the DMZ zone needs to be configured to allow web-browsing access. The web server hosts its contents over HTTP(S). Traffic from Trust to DMZ is being decrypted with a Forward Proxy rule.
Which combination of service and application, and order of Security policy rules, needs to be configured to allow cleartext web- browsing traffic to this server on tcp/443.
Which four NGFW multi-factor authentication factors are supported by PAN-OS? (Choose four.)
A organizations administrator has the funds available to purchase more firewalls to increase the organization's security posture.
The partner SE recommends placing the firewalls as close as possible to the resources that they protect
Is the SE's advice correct and why or why not?
With the default TCP and UDP settings on the firewall what will be me identified application in the following session?
When an in-band data port is set up to provide access to required services, what is required for an interface that is assigned to service routes?
When you import the configuration of an HA pair into Panorama, how do you prevent the import from affecting ongoing traffic?
An administrator needs to troubleshoot a User-ID deployment The administrator believes that there is an issue related to LDAP authentication The administrator wants to create a packet capture on the management plane
Which CLI command should the administrator use to obtain the packet capture for validating the configuration^
An engineer must configure a new SSL decryption deployment
Which profile or certificate is required before any traffic that matches an SSL decryption rule is decrypted?
A security engineer needs to mitigate packet floods that occur on a set of servers behind the internet facing interface of the firewall. Which Security Profile should be applied to a policy to prevent these packet floods?
Which three statements accurately describe Decryption Mirror? (Choose three.)
An administrator has a PA-820 firewall with an active Threat Prevention subscription The administrator is considering adding a WildFire subscription.
How does adding the WildFire subscription improve the security posture of the organization1?
An administrator is considering upgrading the Palo Alto Networks NGFW and central management Panorama version
What is considered best practice for this scenario?