CompTIA
Checkpoint
ISC
HP
Dell
EC-Council
EXIN
Fortinet
ITIL®
Juniper
PMI
Microsoft
VMware
Avaya
Google
Salesforce
Amazon
Palo Alto Networks
Certiport
ISC2
All Vendors
  2. Home
  3. Exams
  4. Palo Alto Networks
  5. PCNSE

Free PCNSE Exam Braindumps (page: 11)

Page 11 of 152
PDF with 619 Questions

An administrator has left a firewall to use the default port for all management services. Which three functions are performed by the dataplane? (Choose three.)

  1. WildFire updates
  2. NAT
  3. NTP
  4. antivirus
  5. file blocking

Answer(s): B,D,E



An administrator is using Panorama and multiple Palo Alto Networks NGFWs. After upgrading all devices to the latest PAN-OS® software, the administrator enables log forwarding from the firewalls to Panorama. Pre-existing logs from the firewalls are not appearing in Panorama.

Which action would enable the firewalls to send their pre-existing logs to Panorama?

  1. Use the import option to pull logs into Panorama.
  2. A CLI command will forward the pre-existing logs to Panorama.
  3. Use the ACC to consolidate pre-existing logs.
  4. The log database will need to exported form the firewalls and manually imported into Panorama.

Answer(s): B



A Palo Alto Networks NGFW just submitted a file to WildFire for analysis. Assume a 5-minute window for analysis. The firewall is configured to check for verdicts every 5 minutes.

How quickly will the firewall receive back a verdict?

  1. More than 15 minutes
  2. 5 minutes
  3. 10 to 15 minutes
  4. 5 to 10 minutes

Answer(s): D



What are the differences between using a service versus using an application for Security Policy match?

  1. Use of a “service” enables the firewall to take immediate action with the first observed packet based on port numbers. Use of an “application” allows the firewall to take immediate action if the port being used is a member of the application standard port list.
  2. There are no differences between “service” or “application”. Use of an “application” simplifies configuration by allowing use of a friendly application name instead of port numbers.
  3. Use of a “service” enables the firewall to take immediate action with the first observed packet based on port numbers. Use of an “application” allows the firewall to take action after enough packets allow for App-ID identification regardless of the ports being used
  4. Use of a “service” enables the firewall to take action after enough packets allow for App-ID identification

Answer(s): C


Reference:

https://docs.paloaltonetworks.com/pan-os/8-1/pan-os-admin/app-id/app-id-overview






Post your Comments and Discuss Palo Alto Networks PCNSE exam with other Community members:

PCNSE Exam Discussions & Posts