PCNSA Exam Dumps - Paloalto Networks Network Security Administrator Questions and Answers

Recently changes were made to the firewall to optimize the policies and the security team wants to see if those changes are helping.

What is the quickest way to reset the hit counter to zero in all the security policy rules?

Which feature must be configured to enable a data plane interface to submit DNS queries originated from the firewall on behalf of the control plane?

Which prevention technique will prevent attacks based on packet count?

Based on the screenshot presented which column contains the link that when clicked opens a window to display all applications matched to the policy rule?

What must first be created on the firewall for SAML authentication to be configured?

Which two statements are true for the DNS security service introduced in PAN-OS version 10.0?

Users from the internal zone need to be allowed to Telnet into a server in the DMZ zone.

Complete the security policy to ensure only Telnet is allowed.

Security Policy: Source Zone: Internal to DMZ Zone __________services “Application defaults”, and action = Allow

Match each rule type with its example

Given the cyber-attack lifecycle diagram identify the stage in which the attacker can run malicious code against a vulnerability in a targeted machine.

An administrator would like to override the default deny action for a given application and instead would like to block the traffic and send the ICMP code "communication with the destination is administratively prohibited"

Which security policy action causes this?