Question 1mediummultiple choice
Read the full App-ID and Content-ID explanation →PCNSA App-ID and Content-ID • Complete Question Bank
Complete PCNSA App-ID and Content-ID question bank — all 0 questions with answers and detailed explanations.
Refer to the exhibit. Application Command Center Name: myapp Category: business-systems Subcategory: file-sharing Technology: peer-to-peer Risk: 4 Characteristics: evasive-behavior, used-by-malware, excessive-bandwidth Security Policy Rule: Source: any Destination: any Application: myapp Action: allow Profile: default Logs show traffic matching this rule is being denied with action 'reset-both'.
Drag steps to the numbered slots on the right, or tap a step then tap a slot.
Drag a concept onto its matching description — or click a concept then click the description.
External, low trust zone
Internal, high trust zone
Public-facing servers, medium trust
Transparent zone for inline deployments
show system state | match appid appid status: init appid version: 8400-XXXX appid last update: 2023-01-01
security rule configuration:
{
"name": "rule1",
"from": ["trust"],
"to": ["untrust"],
"source": ["any"],
"destination": ["any"],
"application": ["web-browsing", "ssl"],
"action": "allow"
}{
"rulebase": {
"security": [
{
"name": "allow-all",
"from": ["trust"],
"to": ["untrust"],
"source": ["any"],
"destination": ["any"],
"application": ["any"],
"action": "allow"
}
]
}
}Refer to the exhibit. admin@PA-5000> show running security-policy Rule Name Source Zone Dest Zone Application Action ------- ----------- ----------- ----------- ------ Allow-Web Trust Untrust web-browsing allow Allow-SSL Trust Untrust ssl allow Block-FTP Trust Untrust ftp deny admin@PA-5000> show app ftp application ftp description: File Transfer Protocol ports: tcp/21 category: file-sharing subcategory: file-protocol technology: client-server risk: 3 default: yes
Refer to the exhibit. security-rule show rule-id 1001 rule-id: 1001 name: Block-Unknown-App from: any to: any source: any destination: any application: (none) service: application-default action: deny log-start: yes log-end: yes Traffic log: time: 2025-03-15 10:00:00 src: 10.1.1.10 dst: 198.51.100.20 port: 443 app: incomplete rule: Block-Unknown-App