Palo Alto Networks PCNSE7 Actual Free Exam Questions & Community Discussion
An administrator logs in to the Palo Alto Networks NGFW and reports that the WebUI is missing the Policies tab. Which profile is the cause of the missing Policies tab?
Correct Answer: D
Vote an answer
An administrator has enabled OSPF on a virtual router on the NGFW. OSPF is not adding new routes to the virtual router.
Which two options enable the administrator to troubleshoot this issue? (Choose two.)
Which two options enable the administrator to troubleshoot this issue? (Choose two.)
Correct Answer: A,C
Vote an answer
Which Captive Portal mode must be configured to support MFA authentication?
Correct Answer: D
Vote an answer
An administrator creates an SSL decryption rule decrypting traffic on all ports.
The administrator also creates a Security policy rule allowing only the applications DNS, SSL, and web-browsing.
The administrator generates three encrypted BitTorrent connections and checks the Traffic logs.
There are three entries. The first entry shows traffic dropped as application Unknown.
The next two entries show traffic allowed as application SSL.
Which action will stop the second and subsequent encrypted BitTorrent connections from being allowed as SSL?
The administrator also creates a Security policy rule allowing only the applications DNS, SSL, and web-browsing.
The administrator generates three encrypted BitTorrent connections and checks the Traffic logs.
There are three entries. The first entry shows traffic dropped as application Unknown.
The next two entries show traffic allowed as application SSL.
Which action will stop the second and subsequent encrypted BitTorrent connections from being allowed as SSL?
Correct Answer: B
Vote an answer
A network security engineer has been asked to analyze Wildfire activity. However, the Wildfire Submissions item is not visible form the Monitor tab.
What could cause this condition?
What could cause this condition?
Correct Answer: C
Vote an answer
Which two actions are required to make Microsoft Active Directory users appear in a firewall traffic log? (Choose two.)
Correct Answer: B,D
Vote an answer
A client is deploying a pair of PA-5000 series firewalls using High Availability (HA) in Active/Passive mode. Which statement is true about this deployment?
Correct Answer: B
Vote an answer
Which two mechanisms help prevent a spilt brain scenario an Active/Passive High Availability (HA) pair? (Choose two)
Correct Answer: B,C
Vote an answer
How can a Palo Alto Networks firewall be configured to send syslog messages in a format compatible with non-standard syslog servers?
Correct Answer: C
Vote an answer
An administrator wants multiple web servers in the DMZ to receive connections initiated from the internet. Traffic destined for 206.15.22.9 port 80/TCP needs to be forwarded to the server at 10.1.1.22 Based on the information shown in the image, which NAT rule will forward web-browsing traffic correctly?
Correct Answer: A
Vote an answer
When configuring a GlobalProtect Portal, what is the purpose of specifying an Authentication Profile?
Correct Answer: A
Vote an answer
Explanation: Only visible for EduDump members. You can sign-up / login (it's free).
The company's Panorama server (IP 10.10.10.5) is not able to manage a firewall that was recently deployed. The firewall's dedicated management port is being used to connect to the management network.
Which two commands may be used to troubleshoot this issue from the CLI of the new firewall? (Choose two)
Which two commands may be used to troubleshoot this issue from the CLI of the new firewall? (Choose two)
Correct Answer: A,B
Vote an answer
Which CLI command can be used to export the tcpdump capture?
Correct Answer: A
Vote an answer
Which Device Group option is assigned by default in Panorama whenever a new device group is created to manage a Firewall?
Correct Answer: B
Vote an answer
0
0
0
10