PCNSE Manage, Monitor and Operate • Complete Question Bank
Complete PCNSE Manage, Monitor and Operate question bank — all 0 questions with answers and detailed explanations.
Refer to the exhibit. admin@PA-5000> show system resources CPU: 15% used Memory: 45% used Disk: /dev/sda1 85% used admin@PA-5000> show logging-status Disk space usage: /opt/pancfg: 70% used /opt/panlogs: 92% used
Refer to the exhibit. admin@PA-3020> show session info Total active sessions: 45000 TCP sessions: 40000 UDP sessions: 5000 admin@PA-3020> show session stats Max sessions: 100000 Current sessions: 45000 admin@PA-3020> show running resource-monitor Dataplane CPU: 85%
Refer to the exhibit. admin@PA-5250> show high-availability state HA State: active HA Link Status: HA1: up HA2: down HA3: down Peer State: non-functional
Drag steps to the numbered slots on the right, or tap a step then tap a slot.
Drag steps to the numbered slots on the right, or tap a step then tap a slot.
Drag a concept onto its matching description — or click a concept then click the description.
Application identification and control
User and group mapping for policies
Threat prevention including IPS and antivirus
Cloud-based malware analysis
Remote access VPN and mobile security
Drag a concept onto its matching description — or click a concept then click the description.
Next-generation firewall for enterprise
Virtual firewall for cloud environments
Container firewall for Kubernetes
Cloud-delivered security for remote users
Extended detection and response for endpoints
> show system info System info: Hostname: FW01 IP address: 192.168.1.1 Netmask: 255.255.255.0 Gateway: 192.168.1.254 Uptime: 0 days, 3 hours, 12 minutes
decryption profile:
name: 'Decrypt-All'
ssl-decryption:
minimum-protocol-version: tls1-0
maximum-protocol-version: tls1-2
allow-block tls1-0
block tls1-1
allow tls1-2Log entry: time: 2024/09/15 10:23:45 serial_number: 007200000001 type: TRAFFIC subtype: start from zone: untrust to zone: trust source: 10.10.10.10 destination: 192.168.1.100 user: unknown application: web-browsing action: drop
Refer to the exhibit. admin@PA-5250> show session all Total sessions shown: 1 Session 1: Source IP: 10.0.0.100 Destination IP: 203.0.113.50 Source port: 49152 Destination port: 443 Protocol: TCP State: SYN_SENT Application: incomplete Bytes: 0
Refer to the exhibit.
config
{
"deviceconfig": {
"system": {
"application-override": [
{
"@name": "override-smtp",
"port": 2525,
"application": "smtp",
"protocol": "tcp"
}
]
}
}
}Refer to the exhibit. Traffic Log: Time: 2024-07-15 10:00:00 Source: 10.1.1.10 Destination: 198.51.100.20 Application: web-browsing Action: allow Threat: High Severity: medium Threat Log: Time: 2024-07-15 10:00:00 Source: 10.1.1.10 Destination: 198.51.100.20 Threat ID: 12345 Action: allow
Refer to the exhibit. admin@PA-500> show running security-policy rule 1: name "Allow-Outbound" from "Internal" to "External" source "10.0.0.0/8" destination "any" application "any" service "any" action "allow" log-start "no" log-end "no" log-forward "Log-to-Panorama"
Refer to the exhibit. set shared gateway "Corp-Gateway" authentication method "client-certificate" set shared gateway "Corp-Gateway" client-config dns-server "8.8.8.8" set shared gateway "Corp-Gateway" client-config ip-pool "10.250.0.1-10.250.0.254" set shared gateway "Corp-Gateway" tunnel-config ipsec-crypto "AES256-SHA256-DH5"
Refer to the exhibit. Apr 12 14:32:15 PA-500: IKE phase 1 negotiation failed for peer 203.0.113.10 [reason: No Proposal Chosen] Apr 12 14:32:17 PA-500: IKE phase 1 negotiation failed for peer 203.0.113.10 [reason: No Proposal Chosen]
admin@PA-5050> show running security-policy
rule 1 {
name: "Allow Web";
source: [192.168.1.0/24];
destination: [any];
application: [web-browsing];
action: allow;
log-start: no;
log-end: yes;
log-setting: "syslog-forwarding-profile";
}