Palo Alto Networks

Free Palo Alto Networks PCNSA Exam Braindumps (page: 11)

Viewing Page 11 of 98 pages.

Download PDF version with 420 Questions

QUESTION: 37

Which two security profile types can be attached to a security policy? (Choose two.)

antivirus
DDoS protection
threat
vulnerability

Answer(s): A,D

Reference:

https://docs.paloaltonetworks.com/pan-os/8-0/pan-os-admin/policy/security-profiles

Show Answer Next Question

QUESTION: 38

The CFO found a USB drive in the parking lot and decide to plug it into their corporate laptop. The USB drive had malware on it that loaded onto their computer and then contacted a known command and control (CnC) server, which ordered the infected machine to begin Exfiltrating data from the laptop.
Which security profile feature could have been used to prevent the communication with the CnC server?

Create an anti-spyware profile and enable DNS Sinkhole
Create an antivirus profile and enable DNS Sinkhole
Create a URL filtering profile and block the DNS Sinkhole category
Create a security policy and enable DNS Sinkhole

Answer(s): A

Reference:

https://docs.paloaltonetworks.com/pan-os/7-1/pan-os-web-interface-help/objects/objects-security-profiles-anti-spyware-profile

Show Answer Next Question

QUESTION: 39

Which user mapping method could be used to discover user IDs in an environment with multiple Windows domain controllers?

Active Directory monitoring
Windows session monitoring
Windows client probing
domain controller monitoring

Answer(s): D

Show Answer Next Question

QUESTION: 40

Which three statements describe the operation of Security policy rules and Security Profiles? (Choose three.)

Security policy rules are attached to Security Profiles.
Security Profiles are attached to Security policy rules.
Security Profiles should be used only on allowed traffic.
Security policy rules inspect but do not block traffic.
Security policy rules can block or allow traffic.

Answer(s): B,C,E

Show Answer Next Question

Viewing page 11 of 98
Viewing questions 37 - 40 out of 420 questions

Post your Comments and Discuss Palo Alto Networks PCNSA exam prep with other Community members:

Comments:

Name:

PCNSA Exam Discussions & Posts

Frage Commented on January 15, 2025
As an individual I sometimes reflect on the way we do things. And this is one of them. We use exam dumps to pass our exams... the smart way. :-)
Australia

TGreen Commented on December 28, 2024
anyone use these dumps on a recent 2024 exam?
UNITED STATES

Jonathan Commented on April 10, 2024
Question 207 answer is incorrect. In the security policy rule, source IP should be IOT/Guest Zone and Trust Zone, not the subnet in the DMZ zone. (Answer B)
SINGAPORE

Tanveer Ansari Commented on October 10, 2023
Good content and very helpful exam dumps
Anonymous

Abdullah Commented on September 29, 2023
good morning
Anonymous

Fa Commented on September 02, 2023
Good morning
Anonymous

ethiopia Commented on August 02, 2023
seems good..
ETHIOPIA

ethiopia Commented on August 02, 2023
seems good..
ETHIOPIA

walyra Commented on July 09, 2023
Q-4 ans Q-4 ans (A) correct
Anonymous

A\MAM Commented on June 27, 2023
Q-6 Ans-B correct. https://docs.paloaltonetworks.com/pan-os/9-1/pan-os-cli-quick-start/use-the-cli/commit-configuration-changes
UNITED STATES

A\MAM Commented on June 27, 2023
q-6 ans-b correct. https://docs.paloaltonetworks.com/pan-os/9-1/pan-os-cli-quick-start/use-the-cli/commit-configuration-changes
UNITED STATES

Dequarius Commented on March 05, 2023
Good content and very helpful exam dumps. I stuided for 4 days, made sure to get a 85+ passing mark using the Xengien App free software. Then I booked my certification exam. Passed it on the first go.
AUSTRALIA

Robyn Commented on February 03, 2023
Very easy purchase process. I have not got a chance to install the Test Engine or the Xengine App but the PDF looks good enough for me.
UNITED KINGDOM

Boyaan Commented on November 01, 2022
I am happy to tell you that I passed my exam today with very good score.
TURKEY

Lenny Commented on October 19, 2022
Many thanks to you and your product. It was the main factor in passing my exam. Very greatful to you guys.
AUSTRALIA

Soumya Commented on August 16, 2022
I got 890/1000 in my exam today.
INDIA

Mr. ExamTaker Commented on May 30, 2021
I love the payment process. They do not ask for any name or address. I am a sucker for privacy.
UNITED KINGDOM