PCNSA EXAM: LATEST A+ QUESTIONS AND ANSWERS
FOR THE WIN!
What are three types of address objects that can be created? (Choose three.)
A) IP Netmask
B) IP Range
C) FQDN
D) EDL
E) Tag
IP Netmask
IP Range
FQDN
During the packet flow process, which two processes are performed in application identification?
(Choose two.)
A) pattern-based application identification
B) application override policy match
C) application changed from content inspection
D) session application identified
pattern-based application identification
application override policy match
How often are new and modified threat signatures and modified application signatures published?
A) weekly
B) hourly
C) daily
D) monthly
weekly
Which two interface types can be used for firewall management? (Choose two.)
A) Virtual Wire
B) Loopback
C) VLAN
D) Layer2
Loopback
VLAN
An administrator wants to secure a specific server in the DMZ. Which Security profile can provide
protection against ICMP floods, based on individual combinations of a packet's source and destination
, IP addresses?
A) Packet Buffering
B) DoS Protection
C) Anti-Spyware
D) Zone Protection
DoS Protection
You receive a notification about a new malware that infects hosts. An infection results in the infected
host attempting to contact a command-and-control server. Which Security Profile, when applied to
outbound Security policy rules, detects and prevents this threat from establishing a command-and-
control connection?
A) Data Filtering Profile
B) Antivirus Profile
C) Vulnerability Protection Profile
D) Anti-Spyware Profile
Anti-Spyware Profile
Based on the screenshot presented, which column contains the link that when clicked, opens a
window to display all applications matched to the policy rule?
A) Name
B) Service
C) Apps Allowed
D) Apps Seen
Apps Seen
Which type of Security policy rule would match traffic flowing between the Inside zone and Outside
zone, as well as within the Inside zone, and within the Outside zone?
A) intrazone
B) interzone
C) global
D) universal
Universal
The CFO found a malware-infected USB drive in the parking lot, which when inserted infected their
corporate laptop. The malware contacted a known command-and-control server, which caused the
infected laptop to begin exfiltrating corporate data. Which Security Profile feature could have been
used to prevent communication with the command-and-control server?
A) Create an Antivirus Profile and enable its DNS sinkhole feature.
B) Create a URL Filtering Profile and block the DNS sinkhole URL category.
FOR THE WIN!
What are three types of address objects that can be created? (Choose three.)
A) IP Netmask
B) IP Range
C) FQDN
D) EDL
E) Tag
IP Netmask
IP Range
FQDN
During the packet flow process, which two processes are performed in application identification?
(Choose two.)
A) pattern-based application identification
B) application override policy match
C) application changed from content inspection
D) session application identified
pattern-based application identification
application override policy match
How often are new and modified threat signatures and modified application signatures published?
A) weekly
B) hourly
C) daily
D) monthly
weekly
Which two interface types can be used for firewall management? (Choose two.)
A) Virtual Wire
B) Loopback
C) VLAN
D) Layer2
Loopback
VLAN
An administrator wants to secure a specific server in the DMZ. Which Security profile can provide
protection against ICMP floods, based on individual combinations of a packet's source and destination
, IP addresses?
A) Packet Buffering
B) DoS Protection
C) Anti-Spyware
D) Zone Protection
DoS Protection
You receive a notification about a new malware that infects hosts. An infection results in the infected
host attempting to contact a command-and-control server. Which Security Profile, when applied to
outbound Security policy rules, detects and prevents this threat from establishing a command-and-
control connection?
A) Data Filtering Profile
B) Antivirus Profile
C) Vulnerability Protection Profile
D) Anti-Spyware Profile
Anti-Spyware Profile
Based on the screenshot presented, which column contains the link that when clicked, opens a
window to display all applications matched to the policy rule?
A) Name
B) Service
C) Apps Allowed
D) Apps Seen
Apps Seen
Which type of Security policy rule would match traffic flowing between the Inside zone and Outside
zone, as well as within the Inside zone, and within the Outside zone?
A) intrazone
B) interzone
C) global
D) universal
Universal
The CFO found a malware-infected USB drive in the parking lot, which when inserted infected their
corporate laptop. The malware contacted a known command-and-control server, which caused the
infected laptop to begin exfiltrating corporate data. Which Security Profile feature could have been
used to prevent communication with the command-and-control server?
A) Create an Antivirus Profile and enable its DNS sinkhole feature.
B) Create a URL Filtering Profile and block the DNS sinkhole URL category.
