A - not exist
B - correct https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA10g000000ClhdCAC
C - not exist
D - incorect - should be - show session all filter application ssl (but show all session, not a count number of sessions)
B
https://kb.itzecurity.com/2014/04/how-to-implement-ssl-decryption.html#:~:text=To%20see%20how%20many%20existing%20SSL%20decryption%20sessions,there%20are%205%20SSL%20sessions%20being%20decrypted%20%281024%E2%80%931019%3D5%29%3A
Helpful CLI Commands
To see how many existing SSL decryption sessions are going through the device, use this CLI command:
> debug dataplane pool statistics | match proxy
https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA10g000000ClEZCA0
I agree b) show session all can be useful command, but on a production network with thousands of sessions it'd take a while to count how many there
were.
Could be B as per al1234
Could be D as per mizuno92 except the full command required is 'show session all filter ssl-decrypt yes count yes'
I'm going to guess B is 'better' between these two
This section is not available anymore. Please use the main Exam Page.PCNSE Exam Questions
Log in to ExamTopics
Sign in:
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.
Upvoting a comment with a selected answer will also increase the vote count towards that answer by one.
So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.
al12345
Highly Voted 2 years, 1 month agoMetgatz
Most Recent 10 months, 4 weeks agoSammy3637
10 months, 4 weeks agoplaythegamewithme
1 year, 5 months agoaatechler
1 year, 8 months agoconfusion
2 years agoTAKUM1y
2 years agomysteryzjoker
2 years, 1 month agosecdaddy
2 years, 1 month agomizuno92
2 years, 1 month ago