Question 1mediummultiple choice
Read the full Deploy and Configure Firewalls explanation →PCNSE Deploy and Configure Firewalls • Complete Question Bank
Complete PCNSE Deploy and Configure Firewalls question bank — all 0 questions with answers and detailed explanations.
Refer to the exhibit. admin@PA-5250> show routing route IPv4 Route Table for virtual-router default destination nexthop metric flags interface age 0.0.0.0/0 10.1.1.1 10 A S ethernet1/1 5m 10.1.1.0/24 10.1.1.100 0 A C ethernet1/1 5m 10.2.2.0/24 10.1.1.200 1 A S ethernet1/1 5m 10.3.3.0/24 10.1.1.200 1 A S ethernet1/1 5m
Drag steps to the numbered slots on the right, or tap a step then tap a slot.
Drag a concept onto its matching description — or click a concept then click the description.
Manually configured by administrator
Learned via link-state routing protocol
Learned via path-vector routing protocol
Directly attached network
Used when no specific route matches destination
Refer to the exhibit. Time,Source,Destination,Application,Action,Rule 2024-05-01 10:00:00,192.168.1.100,203.0.113.50,ssl,deny,default-deny
Refer to the exhibit. admin@PA-500> show interface ethernet1/2.10 Interface ethernet1/2.10 VLAN: 20 Virtual router: default IP netmask: 192.168.10.1/24 Zone: VLAN10 State: up
Refer to the exhibit.
admin@PA-500# show running config | match nat
...
nat {
source-nat {
rule "SNAT-Outside" {
source [ 10.0.0.0/8 ];
destination [ any ];
service [ any ];
to-interface ethernet1/1;
source-translation {
interface-address;
}
}
}
}admin@PA-500> show running security-policy 1. rule1 (src: trust; dst: untrust; app: web-browsing; action: allow) 2. rule2 (src: trust; dst: untrust; user: anyone; app: ssl; action: allow) 3. rule3 (src: trust; dst: untrust; user: user1; app: any; action: deny) 4. rule4 (src: trust; dst: untrust; user: anyone; app: any; action: deny)
set shared decryption rule MyRule from trust to untrust source 10.1.1.0/24 destination any application ssl decryption forward-proxy
admin@PA-5050> show running security-policy
rulebase security rules {
"Permit-Web" {
from "trust"
to "untrust"
source "10.0.0.0/8"
destination "any"
application "web-browsing"
action "allow"
}
}