Free Palo Alto Networks PCNSE6 Exam Dumps Questions & Answers

HOTSPOT
Match the description of an application field with its name.
Answer options may be used more than once or not at all.

Correct Answer:

Explanation:
A TCP three-way handshake completed successfully but the firewall does not have an appropriate App-ID signature - unknown-tcp A TCP handshake completed successfully, but only one more packet was sent - not enough to identify the application - insufficient-data Data received has been discarded because it matched an explicit "deny" rule for that traffic - not-applicable A TCP three-way handshake die NOT complete OR no additional data was sent after a successful TCP three-way handshake - incomplete UDP data has been received but the firewall does not have an appropriate App-ID signature - unknown-udp.
Reference: https://live.paloaltonetworks.com/docs/DOC-1549

A company hosts a publicly-accessible web server behind their Palo Alto Networks firewall, with
this configuration information:
-Users outside the company are in the "Untrust-L3" zone.
-The web server physically resides in the "Trust-L3" zone.
-Web server public IP address: 1.1.1.1
-Web server private IP address: 192.168.1.10
Which NAT Policy rule will allow users outside the company to access the web server?

• A.  Option A
• B.  Option B
• C.  Option D
• D.  Option C

Where can the maximum concurrent SSL VPN Tunnels be set for Vsys2 when provisioning a Palo Alto Networks firewall for multiple virtual systems?

• A.  In the GUI under Device->Setup->Session->Session Settings
• B.  In the GUI under Network->Global Protect->Gateway->Vsys2
• C.  In the GUI under Device->Virtual Systems->Vsys2->Resource
• D.  In the GUI under Network->Global Protect->Portal->Vsys2

Given the following routing table:

Which configuration change on the firewall would cause it to use 10.66.24.88 as the nexthop for the 192.168.93.0/30 network?

• A.  Configuring the Administrative Distance for RIP to be higher than that of OSPF Ext
• B.  Configuring the metric for RIP to be lower than that of OSPF Ext
• C.  Configuring the Administrative Distance for RIP to be lower than that of OSPF Int
• D.  Configuring the metric for RIP to be higher than that of OSPF Int

Which method is the most efficient for determining which administrator made a specific change to the running config?

• A.  In the System log, set a filter for the name of the object that was changed.
• B.  In Config Audit, compare the current running config to all of the saved configurations until the change is found.
• C.  In Config Audit, compare the current running config to previous committed versions until the change is found.
• D.  In the Configuration log, set a filter for the edit command and look for the object that was changed.