Browse Exams Pricing

ExamsPCNSEQuestions

PCNSE Exam Questions

860 real PCNSE exam questions with expert-verified answers and explanations. Page 2 of 18.

Question #51Deploy and Configure
Which Public Key infrastructure component is used to authenticate users for GlobalProtect when the Connect Method is set to pre-logon?
GlobalProtectPKIMachine CertificatePre-logon
Question #52Configuration Troubleshooting
The company's Panorama server (IP 10.10.10.5) is not able to manage a firewall that was recently deployed. The firewall's dedicated management port is being used to connect to the...
Panorama ManagementCLI TroubleshootingNetwork DiagnosticsPacket Capture
Question #53Deploy and Configure
Which three log-forwarding destinations require a server profile to be configured? (Choose three)
Log ForwardingServer ProfilesSystem Services
Question #54Deploy and Configure
Which setting allow a DOS protection profile to limit the maximum concurrent sessions from a source IP address?
DoS ProtectionSecurity ProfilesSession LimitsClassified Protection
Question #55Deploy and Configure
A company has a web server behind a Palo Alto Networks next-generation firewall that it wants to make accessible to the public at 1.1.1.1. The company has decided to configure a de...
Destination NATNAT Policy ConfigurationSecurity ZonesOriginal Packet
Question #56Deploy and Configure
Which two options are required on an M-100 appliance to configure it as a Log Collector? (Choose two)
Log CollectorM-series applianceCLI configurationSystem mode
Question #57Operate
Click the Exhibit button. An administrator has noticed a large increase in bittorrent activity. The administrator wants to determine where the traffic is going on the company. What...
Traffic AnalysisNetwork MonitoringApplication VisibilityPalo Alto Networks GUI
Question #58Core Concepts
Support for which authentication method was added in PAN-OS 7.0?
Authentication MethodsTACACS+PAN-OS FeaturesVersion Specific Features
Question #59Core Concepts
Refer to Exhibit. A firewall has three PBF rules and a default route with a next hop of 172.20.10.1 that is configured in the default VR. A user named Will has a PC with a 192.168....
Policy-Based ForwardingRoutingTraffic FlowNext Hop
Question #60Core Concepts
A company has started utilizing WildFire in its network. Which three file types are supported? (Choose three.)
WildFiresupported file typesmalware analysisPalo Alto Networks security
Question #61Configuration Troubleshooting
What is the name of the debug save file for IPSec VPN tunnels?
IPSec VPNTroubleshootingDebuggingIKE
Question #62Configuration Troubleshooting
via Google Translator?
URL FilteringSecurity Policy EnforcementWeb Content Control
Question #63Deploy and Configure
In order to route traffic between layer 3 interfaces on the PAN firewall you need:
Virtual RouterRouting ConceptsLayer 3 InterfacesNetwork Configuration
Question #64Core Concepts
Wildfire may be used for identifying which of the following types of traffic?
WildfireMalware AnalysisThreat PreventionCloud Security
Question #66Core Concepts
What does App-ID inspect to identify an application?
App-IDApplication IdentificationPalo Alto FirewallTraffic Inspection
Question #67Core Concepts
If malware is detected on the internet perimeter, what other places in the network might be affected?
Malware propagationNetwork attack surfaceEnterprise security scopeThreat landscape
Question #68Deploy and Configure
What are the major families of file types now supported by Wildfire in PAN-OS 7.0?
WildfireFile TypesPAN-OS 7.0Threat Prevention
Question #69Core Concepts
Which of the following are critical features of a Next Generation Firewall that provide Breach prevention? Choose two.
NGFW featuresBreach preventionApplication visibilityURL filtering
Question #70Core Concepts
True or False: One of the advantages of Single Pass Parallel Processing (SP3) is that traffic can be scanned as it crosses the firewall with minimum amount of buffering, which in t...
Single Pass Parallel Processing (SP3)Firewall ArchitecturePerformance OptimizationThreat Prevention Engine
Question #71Plan
Which hardware platform should I consider if the customer needs at least 1 Gbps of Threat Prevention throughput and the ability to handle at least 250K sessions?
Hardware PlatformsFirewall SizingPerformance SpecificationsThreat Prevention
Question #72Core Concepts
True or False: DSRI degrades the performance of a firewall?
DSRILoad BalancingNetwork PerformanceFirewall Performance
Question #73Core Concepts
How quickly are Wildfire updates about previously unknown files now being delivered from the cloud to customers with a WildFire subscription (as of version 6.1)?
WildFireThreat IntelligenceSecurity ServicesUpdate Frequency
Question #74Plan
Which of the following are valid Subscriptions for the Next Generation Platform? [Select All that apply]
Palo Alto SubscriptionsNext-Gen FirewallProduct LicensingPlatform Features
Question #75Plan
Which hardware firewall platforms include both built-in front-to-back airflow and redundant power supplies?
Hardware PlatformsFirewall ModelsRedundancyAirflow
Question #76Operate
Select all the platform components that Wildfire automatically updates after finding malicious activity in previously unknown files, URLs and APKs?
WildFireThreat PreventionURL FilteringSecurity Subscriptions
Question #77Core Concepts
What are five benefits of Palo Alto Networks NGFWs (Next Generation Firewalls)? (Select the five correct answers.)
NGFW BenefitsPalo Alto NetworksNetwork SecurityProduct Capabilities
Question #78Core Concepts
What are the three key components of a successful Three Tab Demo? (Select the three correct answers.)
Three Tab DemoNext-Generation FirewallApp-ID and User-IDThreat Prevention
Question #79Core Concepts
What are the main benefits of WildFire? (Select the three correct answers.)
WildFireSandboxingThreat IntelligenceMalware Detection
Question #80Operate
The automated Correlation Engine uses correlation objects to analyze the logs for patterns. When a match occurs:
Correlation EngineLog analysisSecurity monitoringCorrelation event
Question #81Plan
Which one of these is not a factor impacting sizing decisions?
Firewall SizingPerformance MetricsDeployment Planning
Question #82Core Concepts
TRUE or FALSE: Many customers purchase Palo Alto Networks NGFWs (Next Generation Firewalls) just to gain previously unavailable levels of visibility into their traffic flows.
NGFWTraffic VisibilityValue PropositionCore Features
Question #83Operate
A spike in dangerous traffic is observed. Which of the following PanOS tabs would an administrator utilize to identify culpable users.
PanOS GUITraffic AnalysisUser IdentificationACC
Question #84Core Concepts
True or False: PAN-DB is a service that aligns URLs with category types and is fed to the WildFire threat cloud.
PAN-DBURL FilteringWildFireThreat Intelligence
Question #85Configuration Troubleshooting
Firewall administrators cannot authenticate to a firewall GUI. Which two logs on that firewall will contain authentication-related information useful in troubleshooting this issue?...
Authentication TroubleshootingFirewall LoggingPalo Alto Networks LogsGUI Access
Question #86Core Concepts
Which option is an IPv6 routing protocol?
IPv6Routing ProtocolsOSPFv3Network Protocols
Question #87Deploy and Configure
A network security engineer has a requirement to allow an external server to access an internal web server. The internal web server must also initiate connections with the external...
NAT PolicyBi-directional NATSource NATDestination NAT
Question #88Deploy and Configure
A network design change requires an existing firewall to start accessing Palo Alto Updates from a data plane interface address instead of the management interface. Which configurat...
Service RouteFirewall Management TrafficUpdatesData Plane Interface
Question #89Deploy and Configure
A Network Administrator wants to deploy a Large Scale VPN solution. The Network Administrator has chosen a GlobalProtect Satellite solution. This configuration needs to be deployed...
PanoramaVPNGlobalProtect SatelliteIPSec Tunnel
Question #90Operate
Which CLI command displays the current management plan memory utilization?
CLISystem MonitoringResource UtilizationManagement Plane
Question #91Deploy and Configure
Which URL Filtering Security Profile action logs the URL Filtering category to the URL Filtering log?
URL FilteringSecurity ProfilesLogging
Question #92Deploy and Configure
Refer to the exhibit. Review the screenshots and consider the following information: - FW-1 is assigned to the FW-1_DG device group, and FW-2 is assigned to OFFICE_FW_DG. - There a...
PanoramaDevice GroupsObject InheritanceAddress Objects
Question #93Deploy and Configure
Which three rule types are available when defining policies in Panorama? (Choose three.)
Panorama PolicySecurity RulesRule Hierarchy
Question #94Deploy and Configure
A network design calls for a "router on a stick" implementation with a PA-5060 performing inter- VLAN routing All VLAN-tagged traffic will be forwarded to the PA-5060 through a sin...
Inter-VLAN RoutingRouter on a StickInterface ConfigurationSubinterfaces
Question #95Deploy and Configure
Which Panorama feature allows for logs generated by Panorama to be forwarded to an external Security Information and Event Management(SIEM) system?
PanoramaLog ForwardingSIEM IntegrationLogging Configuration
Question #96Deploy and Configure
Which URL Filtering Security Profile action togs the URL Filtering category to the URL Filtering log?
URL FilteringSecurity ProfilesLoggingPalo Alto Actions
Question #97Core Concepts
What are the differences between using a service versus using an application for Security Policy match?
Security PolicyApp-IDService MatchingPacket Processing
Question #98Deploy and Configure
Which authentication source requires the installation of Palo Alto Networks software, other than PAN-OS 7x, to obtain a username-to-IP-address mapping?
User-IDTS AgentAuthentication SourcesTerminal Services
Question #99Deploy and Configure
Several offices are connected with VPNs using static IPv4 routes. An administrator has been tasked with implementing OSPF to replace static routing. Which step is required to accom...
OSPF ConfigurationRouting ProtocolsInterface ConfigurationVPN Integration
Question #100Deploy and Configure
People are having intermittent quality issues during a live meeting via web application.
QoSTraffic PrioritizationQoS ProfilesQoS Policies
Question #101Deploy and Configure
When is it necessary to activate a license when provisioning a new Palo Alto Networks firewall?
LicensingSubscriptionsAntivirusContent Updates

PreviousPage 2 of 18Next

study smarter, certify faster.

Product

Browse Exams
Pricing
PDF Downloads

Resources

Blog
Glossary
Topics
FAQ
Contact Us

Legal

Terms of Service
Privacy Policy
Cookie Policy
DMCA
Refund Policy

Company

About
Contact

© 2026 NerdExam. All rights reserved.Built for IT professionals

NerdExam is a trading name of WADL Solutions Limited, a company incorporated in Hong Kong (CR# 80143234). Registered office: Unit 2904-05, 29/F, Universal Trade Centre, 3 Arbuthnot Road, Central, Hong Kong.

CompTIA, AWS, Cisco, Microsoft, Google Cloud, Oracle, VMware, and other certification names referenced on this site are trademarks of their respective owners. NerdExam is not affiliated with, endorsed by, or sponsored by any certification vendor.