Question 1mediummultiple choice
Read the full Policy Evaluation and Management explanation →PCNSA Policy Evaluation and Management • Complete Question Bank
Complete PCNSA Policy Evaluation and Management question bank — all 0 questions with answers and detailed explanations.
Refer to the exhibit. admin@PA-500> show running security-policy name from to source destination application action ------------------------------------------------------------------------------------------------------------------ 1 allow-web trust untrust 192.168.1.0/24 any web-browsing allow 2 block-social trust untrust 192.168.1.0/24 any social-networking deny 3 allow-all trust untrust any any any allow
Refer to the exhibit.
admin@PA-5020> show running security-policy
Set application-default
rule id name from to source destination application service action
--- --- --------------------------- ----------- ------------ ------------- ------------ ------------ ---------- -------
1 Allow-Sales-to-App Sales App-Servers 10.10.1.0/24 10.20.1.100 any tcp/80 allow
2 Allow-Any-Web any any any any web-browsing tcp/80 allow
3 Block-Restricted-Apps any any any any bittorrent any deny
4 Allow-DNS any any any any dns udp/53 allowDrag steps to the numbered slots on the right, or tap a step then tap a slot.
Drag a concept onto its matching description — or click a concept then click the description.
Blocks known attack patterns
Controls access to websites
Prevents transfer of specific file types
Prevents sensitive data exfiltration
admin@PA-500> show running security-policy
rulebase security {
rules {
rule1 {
source-zone trust
destination-zone untrust
source [ 10.0.0.0/8 ]
destination any
application [ ssl ]
service application-default
action allow
log-start no
log-end yes
}
rule2 {
source-zone trust
destination-zone untrust
source [ 10.1.0.0/24 ]
destination any
application [ web-browsing ]
service application-default
action allow
log-start no
log-end yes
}
rule3 {
source-zone trust
destination-zone untrust
source [ 10.1.1.0/24 ]
destination any
application any
service application-default
action deny
log-start no
log-end yes
}
}
}admin@PA-500> show log traffic | match allow | head -10 1: 2019-05-15 10:00:00, allow, trust, untrust, 10.10.1.10, 8.8.8.8, web-browsing, http, rule1, ... 2: 2019-05-15 10:00:01, allow, trust, untrust, 10.10.1.11, 8.8.8.8, web-browsing, http, rule1, ... 3: 2019-05-15 10:00:02, deny, trust, untrust, 10.10.1.12, 8.8.8.8, web-browsing, http, rule2, ... 4: 2019-05-15 10:00:03, allow, dmz, untrust, 10.20.1.1, 8.8.8.8, web-browsing, http, rule3, ...
admin@PA-500> show object address-group "internal-servers"
group {
members [ server1 server2 ]
}
admin@PA-500> show object address "server1"
address {
ip-netmask 10.10.10.0/24
}
admin@PA-500> show object address "server2"
address {
ip-range 10.10.20.1-10.10.20.10
}user@fw> show security-rule hit-count rule_id: 1, name: allow-dns, hit_count: 14527 rule_id: 2, name: allow-web, hit_count: 8923 rule_id: 3, name: deny-ssh, hit_count: 0 rule_id: 4, name: allow-mail, hit_count: 2104 rule_id: 5, name: deny-all, hit_count: 73
set security policies policy-name Allow-Sales-to-Finance from Sales to Finance source any destination 10.10.10.0/24 application ms-office365 action allow log-start yes set security policies policy-name Deny-Other from Sales to Finance source any destination any application any action deny log-end yes
> show running security-policy rule 1: name: allow-http, source: trust, dest: untrust, application: web-browsing, action: allow rule 2: name: allow-dns, source: trust, dest: untrust, application: dns, action: allow rule 3: name: deny-all, source: any, dest: any, application: any, action: deny
Refer to the exhibit.
admin@PA-3060> show running security-policy
Total rules: 1
1: Name: Allow-Outbound, Zone: trust->untrust, Source: 10.0.0.0/24, Dest: any, Application: any, Service: any, Action: allow