Examice

Exam PCNSE All QuestionsBrowse all questions from this exam

Go to Exam

Question 330

A firewall has Security policies from three sources:

1. locally created policies

2. shared device group policies as pre-rules

3. the firewall's device group as post-rules

How will the rule order populate once pushed to the firewall?

shared device group policies, local policies, firewall device group policies

firewall device group policies, local policies, shared device group policies

local policies, firewall device group policies, shared device group policies

shared device group policies, firewall device group policies, local policies

Correct Answer: A

The correct order follows a logical sequence based on precedence and application of rules: shared device group policies (pre-rules) are applied first to ensure that any centrally managed important rules are prioritized, followed by local policies which are specific to the particular firewall, and finally, the firewall's device group policies (post-rules) which are evaluated last to finalize any additional configurations or exceptions required at the device group level.

Discussion

mysteryzjokerOption: A

A, not D. Post rules are applied after local policies.

lol12Option: A

A Tricky wording. Just focus on Pre/Local/Post

TAKUM1yOption: A

https://docs.paloaltonetworks.com/panorama/10-2/panorama-admin/manage-firewalls/manage-device-groups/manage-the-rule-hierarchy

SarbiOption: A

A is correct

guilhermeandradeOption: A

A. because the 3 option is post-rule

ATRRHMNOption: A

https://docs.paloaltonetworks.com/pan-os/9-1/pan-os-web-interface-help/panorama-web-interface/defining-policies-on-panorama

428cd48

Palo creates tests for you to fail, all other vendors for you to learn and pass

avatorOption: A

the pre-rule and the post-rule are mentioned in the question not on the answers we need to map it with the listed choice so A is the correct answer.

hifumi_daisukiOption: A

Shared Pre-Rules Device Group Pre-Rules Local Firewall Rules Device Group Post Rule Shared Post-Rules Default Rules https://docs.paloaltonetworks.com/panorama/11-1/panorama-admin/panorama-overview/centralized-firewall-configuration-and-update-management/device-groups/device-group-policies

DenskyDenOption: A

A. 1 million percent!

confusionOption: A

A Shared-Local-Post

nose999Option: A

Sorry A is correct

nose999Option: D

https://docs.paloaltonetworks.com/panorama/9-1/panorama-admin/panorama-overview/centralized-firewall-configuration-and-update-management/device-groups/device-group-policies