최신 PCNSA 무료덤프 - Palo Alto Networks Certified Network Security Administrator

문제1

Match the Cyber-Attack Lifecycle stage to its correct description.

정답:

Explanation:
Reconnaissance - stage where the attacker scans for network vulnerabilities and services that can be exploited.
Installation - stage where the attacker will explore methods such as a root kit to establish persistence Command and Control - stage where the attacker has access to a specific server so they can communicate and pass data to and from infected devices within a network.
Act on the Objective - stage where an attacker has motivation for attacking a network to deface web property

문제2

The Palo Alto Networks NGFW was configured with a single virtual router named VR-1 What changes are required on VR-1 to route traffic between two interfaces on the NGFW?

A. Enable the redistribution profile to redistribute connected routes

B. Add a static routes to route between the two interfaces

C. Add zones attached to interfaces to the virtual router

D. Add interfaces to the virtual router

정답: B

문제3

An administrator wants to create a NAT policy to allow multiple source IP addresses to be translated to the same public IP address. What is the most appropriate NAT policy to achieve this?

A. Static IP

B. Destination

C. Dynamic IP and Port

D. Dynamic IP

정답: C

문제4

Which type security policy rule would match traffic flowing between the inside zone and outside zone within the inside zone and within the outside zone?

A. intrazone

B. interzone

C. universal

D. global

정답: C

문제5

What is an advantage for using application tags?

A. They help with the design of IP address allocations in DHCP.

B. They are helpful during the creation of new zones

C. They help content updates automate policy updates

D. They help with the creation of interfaces

정답: C

문제6

Which statement best describes the use of Policy Optimizer?

A. Policy Optimizer on a VM-50 firewall can display which Layer 7 App-ID Security policies have unused applications

B. Policy Optimizer can add or change a Log Forwarding profile for each Secunty policy selected

C. Policy Optimizer can be used on a schedule to automatically create a disabled Layer 7 App-ID Security policy for every Layer 4 policy that exists Admins can then manually enable policies they want to keep and delete ones they want to remove

D. Policy Optimizer can display which Security policies have not been used in the last 90 days

정답: A

문제7

How does the Policy Optimizer policy view differ from the Security policy view?

A. It specifies applications seen by rules.

B. It provides sorting options that do not affect rule order.

C. It displays rule utilization.

D. It details associated zones.

정답: B

설명: (DumpTOP 회원만 볼 수 있음)

문제8

Which path is used to save and load a configuration with a Palo Alto Networks firewall?

A. Device>Setup>Operations

B. Device>Setup>Interfaces

C. Device>Setup>Services

D. Device>Setup>Management

정답: A

문제9

At which stage of the cyber-attack lifecycle would the attacker attach an infected PDF file to an email?

A. reinsurance

B. command and control

C. delivery

D. installation

E. explotation

정답: C

문제10

Which Security profile would you apply to identify infected hosts on the protected network uwall user database?

A. Anti-spyware

B. Antivirus

C. URL filtering

D. Vulnerability protection

정답: A

문제11

Given the screenshot what two types of route is the administrator configuring? (Choose two )

A. BGP

B. static route

C. default route

D. OSPF

정답: C

문제12

Which two rule types allow the administrator to modify the destination zone? (Choose two )

A. intrazone

B. shadowed

C. interzone

D. universal

정답: C,D

최신 PCNSA 무료덤프 - Palo Alto Networks Certified Network Security Administrator

우리와 연락하기

유용한 링크

최신 업데이트