Brainscape's Knowledge GenomeTM


Top Flashcards (Certified)
All Flashcards

PCNSA 10.0 > Domain 1 - Device Management and Services > Flashcards

Domain 1 - Device Management and Services Flashcards

1
Q

What are two firewall management methods? (Choose two)

a. CLI
b. RDP
c. VPN
d. XML API

A

a. CLI
d. XML API

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

Which two devices are used to connect a computer to the firewall for management purposes? (Choose two)

a. Rollover cable
b. Serial cable
c. RJ-45 Ethernet cable
d. USB cable

A

b. Serial cable
c. RJ-45 Ethernet cable

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

What is the default IP address assigned to the MGT interfaces of a Palo Alto Networks firewall?

a. 192.168.1.1
b. 192.168.1.254
c. 10.0.0.1
d. 10.0.0.254

A

a. 192.168.1.1

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

What are the two default services that are available on the MGT interface? (Choose two)

a. HTTPS
b. SSH
c. HTTP
d. Telnet

A

a. HTTPS
b. SSH

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

Service routes may be used to forward which two traffic types out of a data port? (Choose two)

a. External dynamic lists
b. MineMeId
c. Skype
d. Palo Alto Networks Updates

A

a. External dynamic lists
d. Palo Alto Networks Updates

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

Which command must be performed on the firewall to activate any changes?

a. Commit
b. Save
c. Load
d. Import

A

a. Commit

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
7
Q

Which command backs up configuration files to a remote network device?

a. Import
b. Load
c. Copy
d. Export

A

d. Export

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
8
Q

The command load named configuration snapshot overwrites the current candidate configuration with which three items? (Choose three)

a. Custom-named candidate configuration snapshot (instead of the default snapshot)
b. Custom-named running configuration that you imported.
c. Snapshot.xml
d. Current running configuration (running-config.xml)
e. Palo Alto Networks Update

A

a. Custom-named candidate configuration snapshot (instead of the default snapshot)

d. Current running configuration (running-config.xml)

e. Palo Alto Networks Update

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
9
Q

Which three actions should you complete before you upgrade to a newer version of software? (Choose three)

a. Review the release notes to determine any impact of upgrading to a newer version of the software.

b. Ensure that the firewall is connected to a reliable power source.

c. Export the device state.

d. Create an externally store a backup before you upgrade.

e. Put the firewall in maintenance mode.

A

a. Review the release notes to determine any impact of upgrading to a newer version of the software.

b. Ensure that the firewall is connected to a reliable power source.

d. Create an externally store a backup before you upgrade.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
10
Q

Which two default zones are included with the PAN-OS software? (Choose two)

a. Interzone
b. Extrazone
c. Intrazone
d. Extranet

A

a. Interzone
c. Intrazone

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
11
Q

Which two statements about interfaces are correct? (Choose two)

a. Interfaces must be configured before you can create a zone.

b. Interfaces do not have to be configured before you can create a zone.

c. An interface can belong to only one zone.

d. An interface can belong to multiple zones.

A

b. Interfaces do not have to be configured before you can create a zone.

c. An interface can belong to only one zone.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
12
Q

Which two interfaces types can belong in a Layer 3 zone? (Choose two)

a. Loopback
b. Tap
c. Tunnel
d. Virtual Wire

A

a. Loopback
c. Tunnel

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
13
Q

What can be used to control traffic through zones?

a. Access lists
b. Security policy lists
c. Security policy rules
d. Access policy rules

A

c. Security policy rules

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
14
Q

For inbound inspection, which two actions can be performed with Tap interface? (Choose two)

a. Encrypt traffic
b. Decrypt traffic
c. Allow or block traffic
d. Log traffic

A

b. Decrypt traffic
d. Log traffic

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
15
Q

Which two actions can be performed with a Virtual Wire interface? (Choose two)

a. NAT
b. Route
c. Switch
d. Log Traffic

A

a. NAT
d. Log Traffic

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
16
Q

Which two actions can be performed with a Layer 3 interface? (Choose two)

a. NAT
b. Route
c. Switch
d. Create a virtual wire object

A

a. NAT
b. Route

17
Q

Layer 3 interfaces support which two items? (Choose two)

a. NAT
b. IPv6
c. Switching
d. Spanning Tree

A

a. NAT
b. IPv6

18
Q

Layer 3 interfaces support which three advanced settings? (Choose three)

a. IPv4 addressing
b. IPv6 addressing
c. NDP configuration
d. Link speed configuration
e. Link duplex configuration

A

c. NDP configuration
d. Link speed configuration
e. Link duplex configuration

19
Q

Layer 2 interfaces support which three items? (Choose three)

a. Spanning tree blocking
b. Traffic examination
c. Forwarding of spanning tree BPDUs
d. Traffic shaping via QoS
e. Firewall management
f. Routing

A

b. Traffic examination
c. Forwarding of spanning tree BPDUs
d. Traffic shaping via QoS

20
Q

Which two interface types support subinterfaces? (Choose two)

a. Virtual Wire
b. Layer 2
c. Loopback
d. Tunnel

A

a. Virtual Wire
b. Layer 2

21
Q

Which two statements are true regarding Layer 3 interfaces? (Choose two)

a. You can configure a Layer 3 interface with one or more IP addresses as a DHCP client.

b. A Layer3 interface can only have one DHCP assigned address.

c. You can assign only one IPv4 Address to the same interface.

d. You can enable an interface to send IPv4 router advertisements by selecting the Enable Router Advertisement check box on the Router Advertisement tab.

e. You can apply an Interface Management profile to the interface.

A

b. A Layer3 interface can only have one DHCP assigned address.
e. You can apply an Interface Management profile to the interface.

22
Q

Which statement is true regarding aggregate Ethernet interfaces?

a. Members of an aggregate interface group can be of different media types.

b. An aggregate interface group can be set to a type of tap.

c. Ethernet interfaces that are members of an aggregate interface group must have the same transmission speeds.

d. A Layer 3 aggregate interface group can have more than one IP assigned to it.

e. Members of aggregate Ethernet interfaces can be assigned to different virtual routes.

A

d. A Layer 3 aggregate interface group can have more than one IP assigned to it.

23
Q

What is the default administrative distance of a static route within the PAN-OS software?

a. 1
b. 5
c. 10
d. 100

24
Q

Which two dynamic routing protocols are available in the PAN-OS software?

a. RIP1
b. RIPv2
c. OSPFv3
d. EIGRP

A

b. RIPv2
c. OSPFv3

25
Q

Which value is used to distinguish the preference of routing protocols?

a. Metric
b. Weight
c. Distance
d. Cost
e. Administrative distance

A

e. Administrative distance

26
Q

Which value is used to distinguish the best route within the same routing protocol?

a. Metric
b. Weight
c. Distance
d. Cost
e. Administrative distance

27
Q

In path monitoring, what is used to monitor remote network devices?

a. Ping
b. SSL
c. HTTP
d. HTTPS
e. link state

PCNSA 10.0 (5 decks)

Brainscape helps you reach your goals faster, through stronger study habits.
© 2025 Bold Learning Solutions. Terms and Conditions