The Secret of Check Point 156-915.80 practice test

New Questions 1

Which packet info is ignored with Session Rate Acceleration?

A. source port ranges

B. source ip

C. source port

D. same info from Packet Acceleration is used

View Answer

New Questions 2

Select the correct statement about Secure Internal Communications (SIC) Certificates. SIC Certificates:

A. Are used for securing internal network communications between the SmartDashboard and the Security Management Server.

B. For R75 Security Gateways are created during the Security Management Server installation.

C. Decrease network security by securing administrative communication among the Security Management Servers and the Security Gateway.

D. Uniquely identify Check Point enabled machines; they have the same function as VPN Certificates.

View Answer

New Questions 3

After filtering a fw monitor trace by port and IP, a packet is displayed three times; in the i, I, and o inspection points, but not in the O inspection point. Which is the likely source of the issue?

A. The packet has been sent out through a VPN tunnel unencrypted.

B. An IPSO ACL has blocked the packetu2021s outbound passage.

C. A SmartDefense module has blocked the packet.

D. It is due to NAT.

View Answer

New Questions 4

Peter is your new Security Administrator. On his first working day, he is very nervous and enters the wrong password three times. His account is locked. What can be done to unlock Peteru2021s account? Give the BEST answer.

A. You can unlock Peteru2021s account by using the command fwm lock_admin -u Peter on the Security Management Server.

B. You can unlock Peteru2021s account by using the command fwm unlock_admin -u Peter on the Security Management Server

C. It is not possible to unlock Peteru2021s account. You have to install the firewall once again or abstain from Peteru2021s help.

D. You can unlock Peteru2021s account by using the command fwm unlock_admin -u Peter on the Security Gateway.

View Answer

New Questions 5

SmartReporter reports can be used to analyze data from a penetration-testing regimen in all of the following examples, EXCEPT:

A. Analyzing traffic patterns against public resources.

B. Possible worm/malware activity.

C. Analyzing access attempts via social-engineering.

D. Tracking attempted port scans.

View Answer

New Questions 6

What happen when IPS profile is set in Detect-Only Mode for troubleshooting?

A. It will generate Geo-Protection traffic

B. Automatically uploads debugging logs to Check Point Support Center

C. It will not block malicious traffic

D. Bypass licenses requirement for Geo-Protection control

View Answer

New Questions 7

Your companyu2021s Security Policy forces users to authenticate to the Gateway explicitly, before they can use any services. The Gateway does not allow the Telnet service to itself from any location. How would you configure authentication on the Gateway? With a:

A. Client Authentication rule using the manual sign-on method, using HTTP on port 900

B. Client Authentication rule, using partially automatic sign on

C. Client Authentication for fully automatic sign on

D. Session Authentication rule

View Answer

New Questions 8

What can you do to see the current number of kernel instances in a system with CoreXL enabled?

A. Browse to Secure Platform Web GUI

B. Only Check Point support personnel can access that information

C. Execute SmarDashboard client

D. Execute command cpconfig

View Answer

New Questions 9

What command syntax would you use to turn on PDP logging in a distributed environment?

A. pdp track=1

B. pdp tracker on

C. pdp logging on

D. pdp log=1

View Answer

New Questions 10

Fill in the blank. To save your OSPF configuration in GAiA, enter the command .

View Answer