PCNSA Online Practice Questions and Answers

You need to allow users to access the office-suite application of their choice. How should you configure the firewall to allow access to any office-suite application?

A. Create an Application Group and add Office 365, Evernote Google Docs and Libre Office

B. Create an Application Group and add business-systems to it.

C. Create an Application Filter and name it Office Programs, then filter it on the office programs subcategory.

D. Create an Application Filter and name it Office Programs then filter on the business- systems category.

Which two App-ID applications will need to be allowed to use Facebook-chat? (Choose two.)

A. facebook

B. facebook-chat

C. facebook-base

D. facebook-email

By default, which action is assigned to the intrazone-default rule?

A. Reset-client

B. Reset-server

C. Deny

D. Allow

Given the detailed log information above, what was the result of the firewall traffic inspection?

A. It denied the category DNS phishing.

B. It denied the traffic because of unauthorized attempts.

C. It was blocked by the Anti-Virus Security profile action.

D. It was blocked by the Anti-Spyware Profile action.

What action will inform end users when their access to Internet content is being restricted?

A. Create a custom 'URL Category' object with notifications enabled.

B. Publish monitoring data for Security policy deny logs.

C. Ensure that the 'site access" setting for all URL sites is set to 'alert'.

D. Enable 'Response Pages' on the interface providing Internet access.

An administrator would like to see the traffic that matches the interzone-default rule in the traffic logs. What is the correct process to enable this logging1?

A. Select the interzone-default rule and edit the rule on the Actions tab select Log at Session Start and click OK

B. Select the interzone-default rule and edit the rule on the Actions tab select Log at Session End and click OK

C. This rule has traffic logging enabled by default no further action is required

D. Select the interzone-default rule and click Override on the Actions tab select Log at Session End and click OK

Which two statements are correct about App-ID content updates? (Choose two.)

A. Updated application content may change how security policy rules are enforced

B. After an application content update, new applications must be manually classified prior to use

C. Existing security policy rules are not affected by application content updates

D. After an application content update, new applications are automatically identified and classified

What must be configured for the firewall to access multiple authentication profiles for external services to authenticate a non-local account?

A. authentication sequence

B. LDAP server profile

C. authentication server list

D. authentication list profile

Which setting is available to edit when a tag is created on the local firewall?

A. Color

B. Location

C. Order

D. Priority

What is the Anti-Spyware Security profile default action?

A. Sinkhole

B. Reset-client

C. Drop

D. Reset-both