[2024-06-29更新,230問] 無料Palo Alto Networks PCNSA試験問題集、PCNSA復習範囲(ページ 24)

PCNSA 試験問題 111

At which point in the app-ID update process can you determine if an existing policy rule is affected by an app-ID update?

A. after clicking Check New in the Dynamic Update window

B. after connecting the firewall configuration

C. after installing the update

D. after downloading the update

PCNSA 試験問題 112

Based on the screenshot what is the purpose of the included groups?

A. They are only groups visible based on the firewall's credentials.

B. They contain only the users you allow to manage the firewall.

C. They are groups that are imported from RADIUS authentication servers.

D. They are used to map usernames to group names.

PCNSA 試験問題 113

Refer to the exhibit. A web server in the DMZ is being mapped to a public address through DNAT.

Which Security policy rule will allow traffic to flow to the web server?

A. Untrust (any) to DMZ (10.1.1.100), web browsing -Allow

B. Untrust (any) to Untrust (1.1.1.100), web browsing -Allow

C. Untrust (any) to Untrust (10.1.1.100), web browsing -Allow

D. Untrust (any) to DMZ (1.1.1.100), web browsing -Allow

PCNSA 試験問題 114

An administrator is configuring a NAT rule
At a minimum, which three forms of information are required? (Choose three.)

A. destination address

B. destination interface

C. destination zone

D. name

E. source zone

PCNSA 試験問題 115

The compliance officer requests that all evasive applications need to be blocked on all perimeter firewalls out to the internet. The firewall is configured with two zones:
1. trust for internal networks
2. untrust to the internet
Based on the capabilities of the Palo Alto Networks NGFW, what are two ways to configure a security policy using App-ID to comply with this request? (Choose two )

A. Create a deny rule at the top of the policy from trust to untrust with service application-default and add an application filter with the evasive characteristic

B. Create a deny rule at the top of the policy from trust to untrust with service application-default and select evasive as the application.

C. Create a deny rule at the top of the policy from trust to untrust over any service and select evasive as the application

D. Create a deny rule at the top of the policy from trust to untrust over any service and add an application filter with the evasive characteristic.

他のバージョン: 2361PaloAltoNetworks.PCNSA.v2024-11-05.q311; 2409PaloAltoNetworks.PCNSA.v2023-10-03.q195; 3197PaloAltoNetworks.PCNSA.v2022-09-28.q194

最新アップロード: 145Salesforce.Mule-Arch-201.v2026-06-13.q56; 131Fortinet.NSE7_SOC_AR-7.6.v2026-06-13.q26; 138HP.HPE0-G04.v2026-06-13.q33; 157CrowdStrike.CCFA-200b.v2026-06-13.q88; 164Salesforce.Mule-Dev-201.v2026-06-12.q88; 177WGU.Information-Technology-Management.v2026-06-12.q113; 286CuramSoftware.CS0-003.v2026-06-12.q520; 191Salesforce.NP-Con-101.v2026-06-11.q92; 191RealEstate.Maryland-Real-Estate-Salesperson.v2026-06-11.q107; 243Microsoft.AZ-204.v2026-06-11.q260

PCNSA 試験問題 111

PCNSA 試験問題 112

PCNSA 試験問題 113

PCNSA 試験問題 114

PCNSA 試験問題 115

PDFファイルをダウンロード