aiotestking uk

PCNSE6 Exam Questions - Online Test


PCNSE6 Premium VCE File

Learn More 100% Pass Guarantee - Dumps Verified - Instant Download
150 Lectures, 20 Hours

Q1. A network administrator uses Panorama to push security policies to managed firewalls at branch offices. 

Which policy type should be configured on Panorama if the administrator wishes to allow local administrators at the branch office sites to override these policies? 

A. Implicit Rules 

B. Post Rules 

C. Default Rules 

D. Pre Rules 

Answer:

Q2. Given the following routing table: 

Which configuration change on the firewall would cause it to use 10.66.24.88 as the nexthop for the 192.168.93.0/30 network? 

A. Configuring the Administrative Distance for RIP to be higher than that of OSPF Ext 

B. Configuring the metric for RIP to be higher than that of OSPF Int 

C. Configuring the metric for RIP to be lower than that of OSPF Ext 

D. Configuring the Administrative Distance for RIP to be lower than that of OSPF Int 

Answer:

Explanation: 

Reference: https://live.paloaltonetworks.com/servlet/JiveServlet/previewBody/5284-102-3-17278/Route%20Redistribution%20and%20Filtering%20TechNote%20-%20Rev%20B.pdf 

Q3. The following can be configured as a next hop in a Static Route: 

A. A Policy-Based Forwarding Rule 

B. Virtual System 

C. A Dynamic Routing Protocol 

D. Virtual Router 

Answer:

Q4. You are configuring a File Blocking Profile to be applied to all outbound traffic uploading a specific file type, and there is a specific application that you want to match in the policy. 

What are three valid actions that can be set when the specified file is detected? Choose 3 answers 

A. Reset-both 

B. Block 

C. Continue 

D. Continue-and-forward 

E. Upload 

Answer: B,C,D 

Explanation: 

Reference: https://www.paloaltonetworks.com/content/dam/paloaltonetworks-com/en_US/assets/pdf/framemaker/60/pan-os/pan-os/section_8.pdf page 287 

Q5. How do you limit the amount of information recorded in the URL Content Filtering Logs? 

A. Enable DSRI 

B. Disable URL packet captures 

C. Enable URL log caching 

D. Enable Log container page only 

Answer:

Q6. Users can be authenticated serially to multiple authentication servers by configuring: 

A. Multiple RADIUS Servers sharing a VSA configuration 

B. Authentication Sequence 

C. Authentication Profile 

D. A custom Administrator Profile 

Answer:

Q7. A company has purchased a WildFire subscription and would like to implement dynamic updates to download the most recent content as often as possible. 

What is the shortest time interval the company can configure their firewall to check for WildFire updates? 

A. Every 24 hours 

B. Every 30 minutes 

C. Every 15 minutes 

D. Every 1 hour 

E. Every 5 minutes 

Answer:

Explanation: 

Reference: https://www.paloaltonetworks.com/content/dam/paloaltonetworks-com/en_US/assets/pdf/framemaker/60/wildfire/WF_Admin/section_1.pdf page 11 

Q8. Will an exported configuration contain Management Interface settings? 

A. Yes 

B. No 

Answer:

Q9. Which link is used by an Active-Passive cluster to synchronize session information? 

A. The Data Link 

B. The Control Link 

C. The Uplink 

D. The Management Link 

Answer:

Q10. Company employees have been given access to the GlobalProtect Portal at https://portal.company.com: 

Assume the following: 

1. The firewall is configured to resolve DNS names using the internal DNS server. 

2. The URL portal.company.com resolves to the external interface of the firewall on the company’s external DNS server and to the internal interface of the firewall on the company s internal DNS server. 

3. The URL gatewayl.company.com resolves to the external interface of the firewall on the company’s external DNS server and to the internal interface of the firewall on the company s internal DNS server. 

This Gateway configuration will have which two outcomes? Choose 2 answers 

A. Clients outside the network will be able to connect to the external gateway Gateway1. 

B. Clients inside the network will be able to connect to the internal gateway Gateway1. 

C. Clients outside the network will NOT be able to connect to the external gateway Gateway1. 

D. Clients inside the network will NOT be able to connect to the internal gateway Gateway1. 

Answer: A,B