PCNSE Practice Test

An organization has recently migrated its infrastructure and configuration to NGFWs, for which Panorama manages the devices. The organization is coming from a L2-L4 firewall vendor, but wants to use App-ID while identifying policies that are no longer needed. Which Panorama tool can provide a solution?

A. Application Groups

B. Policy Optimizer

C. Test Policy Match

D. Config Audit

The server team is concerned about the high volume of logs forwarded to their syslog server, it is determined that DNS is generating the most logs per second. The risk and compliance team requests that any Traffic logs indicating port abuse of port 53 must still be forwarded to syslog. All other DNS. Traffic logs can be exclude from syslog forwarding. How should syslog log forwarding be configured?

A. With (port,dst neq 53)’ Traffic log filter Object > Log Forwarding.

B. With ‘(port dst neq 53)’ Traffic log filter inside Device > log Settings.

C. With ‘(app neq dns-base)’’ Traffic log filter inside Device> Log Settings.

D. With ‘(app neq dns-base)’’ Traffic log filter inside Objects> Log Forwarding

Which protocol is natively supported by GlobalProtect Clientless VPN?

A. HTP

B. SSH

C. HTTPS

D. RDP

An internal audit team has requested additional information to be included inside traffic logs forwarded from Palo Alto Networks firewalls to an interal syslog server. Where can the firewall engineer define the data to be added into each forwarded log?

A. Data Patterns within Objects > Custom Objects

B. Custom Log Format within Device Server Profiles> Syslog

C. Built-in Actions within Objects > Log Forwarding Profile

D. Logging and Reporting Settings within Device > Setup > Management

What happens when an A/P firewall pair synchronizes IPsec tunnel security associations (SAs)?

A. Phase 1 and Phase 2 SAs are synchronized over HA3 links.

B. Phase 2 SAs are synchronized over HA2 links.

C. Phase 1 and Phase 2 SAs are synchronized over HA2 links.

D. Phase 1 SAs are synchronized over HA1 links.