PCNSE QUESTIONS AND ANSWER GRADED A+

1. Which CLI command is used to simulate traffic going through the firewall and determine which Security policy rule, NAT translation, static route, or PBF rule will be triggered by the traffic? A. check B. find C. test D. sim - C. test An organization has Palo Alto Networks NGFWs that send lo...

Dynamic tags can be assigned to which kind of data in a log event? - source and destination address How can the firewall use dynamically tagged objects to block traffic? - Assign the object to a Dynamic Address Group object, which then is added to the destination address matching condition of a S...

Which component of the integrated Palo Alto Networks security solution limits network- attached workstation access to a corporate mainframe? threat intelligence cloud advanced endpoint protection next-generation firewall tunnel inspection - C - NGFW Which Palo Alto Networks product is designed...

2 ways to Reset to Factory default - * from CLI with known password . request system private-data-reset * from CLI without PW reboot and type "maint" during bootup choose Reset to factory default or load another config into running memory DNS and NTP are configured where? - Device > Setup...

What is the last step of packet processing in the firewall? check allowed ports check Security Profiles check Security policy forwarding lookup - Check Security Profiles Which interface type requires you to configure where the next hop is for various addresses? tap virtual wire Layer 2 Laye...

How many firewalls warrant the use of Panorama - 6 A PA's default MGT IP is - 192.168.1.1 Disable ________ and _________ on the MGT interface - Telnet and HTTP Palo Alto recommends not giving the ____ port _______ access, instead: give ______ access to a _______ port - MGT, external, external, ...

AutoFocus - The AutoFocus threat intelligence service enables security teams to prioritize their response to unique, targeted attacks and gain the intelligence, analytics and context needed to protect your organization. It provides context around an attack spotted in your traffic and threat logs, ...

Flexible Deployment Options - Basic Deployment - Direct Log Collection Distributed Deployment - Log collection is directed to dedicated Panorama management List the different Hardware Devices - M-600 (lg. scale FW) M-500 (data center) M-200 (Large scale deployments) M-100 (legacy hardware) 1. ...

Cortex Data Lake - Collect large volumes of log data so that innovative apps can gain insight from your environment Cortex XDR - Tools that works with Cortex Data Lake to identify threats manually DNS Security - Malicious domain information available to your NGFW collected from WildFire, Unit 42...