PCNSE exam

Refer to the exhibit. Which will be the egress interface if the traffic's ingress interface is ethernet1/7 sourcing from 192.168.111.3 and to the destination 10.46.41.113?A . ethernet1/6B . ethernet1/3C . ethernet1/7D . ethernet1/5View AnswerAnswer: D Explanation: In the second image, VW ports mentioned are 1/5 and 1/7. Hence it can...

What are three tasks that cannot be configured from Panorama by using a template stack? (Choose three.)A . Change the firewall management IP addressB . Configure a device block listC . Add administrator accountsD . Rename a vsys on a multi-vsys firewallE . Enable operational modes such as normal mode,...

An engineer creates a set of rules in a Device Group (Panorama) to permit traffic to various services for a specific LDAP user group. What needs to be configured to ensure Panorama can retrieve user and group information for use in these rules?A . A service route to the LDAP...

An administrator is attempting to create policies tor deployment of a device group and template stack. When creating the policies, the zone drop down list does not include the required zone. What must the administrator do to correct this issue?A . Specify the target device as the master device in...

Where can a service route be configured for a specific destination IP?A . Use Network > Virtual Routers, select the Virtual Router > Static Routes > IPv4B . Use Device > Setup > Services > ServicesC . Use Device > Setup > Services > Service Route Configuration > Customize >...

Information Security is enforcing group-based policies by using security-event monitoring on Windows User-ID agents for IP-to-User mapping in the network. During the rollout, Information Security identified a gap for users authenticating to their VPN and wireless networks. Root cause analysis showed that users were authenticating via RADIUS and that authentication...

Which statement is correct given the following message from the PanGPA log on the GlobalProtect app? Failed to connect to server at port:47 67A . The PanGPS process failed to connect to the PanGPA process on port 4767B . The GlobalProtect app failed to connect to the GlobalProtect Portal on...

To ensure that a Security policy has the highest priority, how should an administrator configure a Security policy in the device group hierarchy?A . Add the policy to the target device group and apply a master device to the device group.B . Reference the targeted device's templates in the target...

In a template, which two objects can be configured? (Choose two.)A . SD-WAN path quality profileB . Monitor profileC . IPsec tunnelD . Application groupView AnswerAnswer: BC Explanation: https://docs.paloaltonetworks.com/pan-os/10-1/pan-os-web-interface-help/network/network-network-profiles/network-network-profiles-monitor.html

Review the images. A firewall policy that permits web traffic includes the global-logs policy is depicted What is the result of traffic that matches the "Alert - Threats" Profile Match List?A . The source address of SMTP traffic that matches a threat is automatically blocked as BadGuys for 180 minutes.B...