Question 1easymultiple choice
Review the full subnetting walkthrough →PCNSA Palo Alto Networks Platforms and Architecture • Complete Question Bank
Complete PCNSA Palo Alto Networks Platforms and Architecture question bank — all 0 questions with answers and detailed explanations.
Refer to the exhibit. show system info | match model vm-series show running security-policy set rulebase security rules "Allow-Web" from [ trust ] to [ untrust ] source [ 10.0.0.0/24 ] destination [ any ] application [ web-browsing ] service [ application-default ] action allow set rulebase security rules "Block-All" from [ any ] to [ any ] source [ any ] destination [ any ] application [ any ] service [ any ] action deny show running nat-policy set rulebase nat rules "NAT-Internet" from [ trust ] to [ untrust ] source [ 10.0.0.0/24 ] destination [ any ] service [ any ] to-interface [ ethernet1/2 ] snat-interface show session all filter source 10.0.0.5 session id 12345, application incomplete, source 10.0.0.5:50000, destination 203.0.113.1:80, nat source 10.0.0.5, nat destination 203.0.113.1, rule Allow-Web, nat rule NAT-Internet, state active, type flow
Drag steps to the numbered slots on the right, or tap a step then tap a slot.
Drag a concept onto its matching description — or click a concept then click the description.
Centralized management of multiple firewalls
Threat intelligence and analysis
SaaS security for cloud applications
Endpoint detection and response
Refer to the exhibit. admin@PA-220> show system info System info: Hostname: PA-220 Model: PA-220 Serial: 0123456789 Software version: 9.1.4 Operating mode: normal Uptime: 10 days, 5 hours, 23 mins admin@PA-220> show system software status PAN-OS version: 9.1.4 Installed packages: none Latest available: 9.1.7
Refer to the exhibit. admin@PA-3220> show routing route table default IPv4 Route Table for virtual-router default (0 entries) No routes admin@PA-3220> show routing route destination nexthop metric flags interface 0.0.0.0/0 10.1.1.1 10 A ethernet1/1 10.1.1.0/24 0.0.0.0 0 C ethernet1/1 192.168.1.0/24 0.0.0.0 0 C ethernet1/2
Refer to the exhibit. Security rule configuration: description: 'Allow web traffic' source-zone: Trust destination-zone: Untrust source-address: 192.168.1.0/24 destination-address: any application: web-browsing, ssl service: application-default action: allow profile-group: strict-profile-group log-end: yes
Refer to the exhibit. > show system info Hardware model: PA-5250 Serial number: 007200000123 Software version: 10.1.3 System uptime: 14 days, 3 hours, 22 minutes System time: Tue Jul 25 14:35:12 2023 Eth0/0: 192.168.1.1/24 Eth0/1: 10.0.0.1/24 Sessions active: 25000 Devices active: 120
Refer to the exhibit.
config
security {
rules {
rule allow-http {
source-zone [ trust ];
destination-zone [ untrust ];
source-address [ any ];
destination-address [ any ];
application [ web-browsing ];
service [ application-default ];
action allow;
log-start yes;
}
}
}Refer to the exhibit. 2023/07/25 14:35:12,THREAT,url,1,2023/07/25 14:35:12,192.168.1.10,203.0.113.5,192.168.1.10,203.0.113.5,allow,,,web-browsing,vsys1,trust,untrust,ethernet1/1,ethernet1/2,2012,1,1,45,2023/07/25 14:35:12,0,any,0,2621440000,10.0.0.1,0,0,0,0,,PA-5250,from-policy,,,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0 Note: The log entry is truncated for readability.
show system info System info: Hostname: FW-01 Model: PA-5250-5G PAN-OS version: 10.1.6 Serial number: 0123456789 System uptime: 14 days, 3 hours, 45 minutes
System info: Model: PA-5250 Software version: 10.0.3 Uptime: 45 days, 12:34:56 System mode: virtual