When a security rule is configured as Intrazone, which field cannot be changed?
A. Actions
B. Source Zone
C. Destination Zone
D. Application
正解:C
解説: (Pass4Test メンバーにのみ表示されます)
質問 2:
Why should a company have a File Blocking profile that is attached to a Security policy?
A. To analyze file types
B. To detonate files in a sandbox environment
C. To block uploading and downloading of any type of files
D. To block uploading and downloading of specific types of files
正解:D
質問 3:
An administrator configured a Security policy rule with an Antivirus Security profile. The administrator did not change the action (or the profile. If a virus gets detected, how wilt the firewall handle the traffic?
A. It drops the traffic because the profile was not set to explicitly allow the traffic.
B. It allows the traffic because the profile was not set to explicitly deny the traffic.
C. It allows the traffic but generates an entry in the Threat logs.
D. It uses the default action assigned to the virus signature.
正解:A
質問 4:
Your company requires positive username attribution of every IP address used by wireless devices to support a new compliance requirement. You must collect IP -to-user mappings as soon as possible with minimal downtime and minimal configuration changes to the wireless devices themselves. The wireless devices are from various manufactures.
Given the scenario, choose the option for sending IP-to-user mappings to the NGFW.
A. UID redistribution
B. XFF headers
C. syslog
D. RADIUS
正解:C
質問 5:
In the PAN-OS Web Interface, which is a session distribution method offered under NAT Translated Packet Tab to choose how the firewall assigns sessions?
A. IP Modulo
B. Destination IP Hash b
C. Max Sessions
D. Concurrent Sessions
正解:A
解説: (Pass4Test メンバーにのみ表示されます)
Mieno -
これPCNSA一冊あれば十分に事足りると私は思いました。わかりやすい!