PCNSE6 Exam Questions

When a user logs in via Captive Portal, their user information can be checked against:

When using Config Audit, the color yellow indicates which of the following?

A user is reporting that they cannot download a PDF file from the internet. Which action will show whether the downloaded file has been blocked by a Security Profile?

Which one of the options describes the sequence of the GlobalProtect agent connecting to a Gateway?

What is the correct policy to most effectively block Skype?

In an Anti-Virus profile, changing the action to "Block" for IMAP or POP decoders will result in the following:

Can multiple administrator accounts be configured on a single firewall?

Which two steps are required to make Microsoft Active Directory users appear in the firewall's traffic log? Choose 2 answers

It is discovered that WebandNetTrends Unlimited's new web server software produces traffic that the Palo Alto Networks firewall sees as "unknown-tcp" traffic. Which two configurati...

By default, all PA-5060 syslog data is forwarded out the Management interface. What needs to be configured in order to send syslog data out of a different interface?

When configuring Security rules based on FQDN objects, which of the following statements are true?

When allowing an Application in a Security policy on a PAN-OS 5.0 device, would a dependency Application need to also be enabled if the application does not employ HTTP, SSL, MSRPC...

What happens at the point of Threat Prevention license expiration?

A company is in the process of upgrading their existing Palo Alto Networks firewalls from version 6.1.0 to 6.1.1. Which three methods can the firewall administrator use to install...

When employing the BrightCloud URL filtering database in a Palo Alto Networks firewall, the order of evaluation within a profile is:

When troubleshooting Phase 1 of an IPSec VPN tunnel, what location will have the most informative logs?

What is the size limitation of files manually uploaded to WildFire

The "Disable Server Return Inspection" option on a security profile:

A network administrator uses Panorama to push security policies to managed firewalls at branch offices. Which policy type should be configured on Panorama if the administrator wish...

A firewall administrator is troubleshooting problems with traffic passing through the Palo Alto Networks firewall. Which method will show the global counters associated with the tr...

What are the benefits gained when the "Enable Passive DNS Monitoring" checkbox is chosen on the firewall? (Select all correct answers.)

What is the maximum usable storage capacity of an M-100 appliance?

In the following display, ethernetl/6 is configured with an interface management profile that allows ping with no restriction on the source address: Given the following security po...

When employing the Brightcloud URL filtering database on the Palo Alto Networks firewalls, the order of checking within a profile is:

Configuring a pair of devices into an Active/Active HA pair provides support for:

Which of the following types of protection are available in DoS policy?

Both SSL decryption and SSH decryption are disabled by default.

What is the default DNS Sinkhole address used by Palo Alto Networks Firewall to cut off communication?

What is a prerequisite for configuring a pair of Palo Alto Networks firewalls in an Active/Passive High Availability (HA) pair?

When an interface is in Tap mode and a policy action is set to block, the interface will send a TCP reset.

Users can be authenticated serially to multiple authentication servers by configuring:

What are two sources of information for determining if the firewall has been successful in communicating with an external User-ID Agent?

Which of the following interfaces types will have a MAC address?

In Active/Active HA environments, redundancy for the HA3 interface can be achieved by

Enabling "Highlight Unsused Rules" in the Security policy window will:

What can cause missing SSL packets when performing a packet capture on data plane interfaces?

Palo Alto Networks maintains a dynamic database of malicious domains. Which two Security Platform components use this database to prevent threats? Choose 2 answers

A security engineer has been asked by management to optimize how Palo Alto Networks firewall syslog messages are forwarded to a syslog receiver. There are currently 20 PA-5060 s, e...

Which three inspections can be performed with a next-generation firewall but NOT with a legacy firewall? Choose 3 answers

Which two interface types provide support for network address translation (NAT)? Choose 2 answers

Which Public Key Infrastructure component is used to authenticate users for GlobalProtect when the Connect Method is set to "pre-logon"?

A hotel chain is using a system to centrally control a variety of items in guest rooms. The client devices in each guest room communicate to the central controller using TCP and fr...

Select the implicit rules enforced on traffic failing to match any user defined Security Policies:

Which authentication method can provide role-based administrative access to firewalls running PAN-OS?

A firewall is being attacked with a port scan. Which component can prevent this attack?

What are the three Security Policy rule Type classifications supported in PAN-OS 6.1?

The IT department has received complaints about VoIP call jitter when the sales staff is making or receiving calls. QoS is enabled on all firewall interfaces, but there is no QoS p...