• Home
  • Articles
  • Prepare Top CheckPoint 156-315.81.20 Exam Study Guide Practice Questions Edition [Q38-Q61]

Prepare Top CheckPoint 156-315.81.20 Exam Study Guide Practice Questions Edition [Q38-Q61]

Share

Prepare Top CheckPoint 156-315.81.20 Exam Study Guide Practice Questions Edition

Go to 156-315.81.20 Questions - Try 156-315.81.20 dumps pdf

NEW QUESTION # 38
To help SmartEvent determine whether events originated internally or externally you must define using the Initial Settings under General Settings in the Policy Tab.
How many options are available to calculate the traffic direction?

  • A. 5 Network; Host; Objects; Services; API
  • B. 4 Incoming; Outgoing; Internal; Other
  • C. 2 Internal; External
  • D. 3 Incoming; Outgoing; Network

Answer: B


NEW QUESTION # 39
After trust has been established between the Check Point components, what is TRUE about name and IP-address changes?

  • A. Security Gateway IP-address cannot be changed without re-establishing the trust.
  • B. The Security Management Server name cannot be changed in SmartConsole without re-establishing trust.
  • C. The Security Management Server IP-address cannot be changed without re-establishing the trust.
  • D. The Security Gateway name cannot be changed in command line without re-establishing trust.

Answer: A


NEW QUESTION # 40
John detected high load on sync interface.
Which is most recommended solution?

  • A. For short connections like http service - delay sync for 2 seconds
  • B. For short connections like icmp service - delay sync for 2 seconds
  • C. Add a second interface to handle sync traffic
  • D. For short connections like http service - do not sync

Answer: A


NEW QUESTION # 41
Which file contains the host address to be published, the MAC address that needs to be associated with the IP Address, and the unique IP of the interface that responds to ARP request?

  • A. $CPDIR/conf/local.arp
  • B. /var/opt/CPshrd-R81/conf/local.arp
  • C. $FWDIR/conf/local.arp
  • D. /opt/CPshrd-R81/conf/local.arp

Answer: C


NEW QUESTION # 42
At what point is the Internal Certificate Authority (ICA) created?

  • A. When an administrator initially logs into SmartConsole.
  • B. When an administrator decides to create one.
  • C. Upon creation of a certificate.
  • D. During the primary Security Management Server installation process.

Answer: D


NEW QUESTION # 43
In what way are SSL VPN and IPSec VPN different?

  • A. IPSec VPN uses an additional virtual adapter; SSL VPN uses the client network adapter only.
  • B. SSL VPN is using HTTPS in addition to IKE, whereas IPSec VPN is clientless
  • C. IPSec VPN does not support two factor authentication, SSL VPN does support this
  • D. SSL VPN adds an extra VPN header to the packet, IPSec VPN does not

Answer: A


NEW QUESTION # 44
In SmartEvent, what are the different types of automatic reactions that the administrator can configure?

  • A. Mail, Block Source, Block Destination, Block Services, SNMP Trap
  • B. Mail, Block Source, Block Event Activity, External Script, SNMP Trap
  • C. Mail, Block Source, Block Event Activity, Packet Capture, SNMP Trap
  • D. Mail, Block Source, Block Destination, External Script, SNMP Trap

Answer: B


NEW QUESTION # 45
True or False: In a Distributed Environment, a Central License can be installed via CLI on a Security Gateway.

  • A. True, Central License can be installed with CPLIC command on a Security Gateway
  • B. False, Central Licenses are installed via Gaia on Security Gateways
  • C. False, Central License are handled via Security Management Server
  • D. True, CLI is the prefer method for Licensing

Answer: A


NEW QUESTION # 46
What is the command used to activated Multi-Version Cluster mode?

  • A. set cluster member mvc on in Clish
  • B. set mvc on on Clish
  • C. set cluster MVC on in Expert Mode
  • D. set cluster mvc on in Expert Mode

Answer: A


NEW QUESTION # 47
By default, what type of rules in the Access Control rulebase allow the control connections?

  • A. Implicit Rules
  • B. Explicit Rules
  • C. Explicitly Implied Rules
  • D. Implied Rules

Answer: D


NEW QUESTION # 48
The Event List within the Event tab contains:

  • A. the details of a selected event.
  • B. a list of options available for running a query.
  • C. the top events, destinations, sources, and users of the query results, either as a chart or in a tallied list.
  • D. events generated by a query.

Answer: D


NEW QUESTION # 49
Alice wants to upgrade the current security management machine from R80.40 to R81.20 and she wants to check the Deployment Agent status over the GAIA CLISH.
Which of the following GAIACLISH command is true?

  • A. show installer status
  • B. show installer packages
  • C. show uninstaller status
  • D. show agent status

Answer: A


NEW QUESTION # 50
There are two R77.30 Security Gateways in the Firewall Cluster. They are named FW_A and FW_B.
The cluster is configured to work as HA (High availability) with default cluster configuration. FW_A is configured to have higher priority than FW_B. FW_A was active and processing the traffic in the morning. FW_B was standby. Around 1100 am, its interfaces went down and this caused a failover. FW_B became active. After an hour, FW_A's interface issues were resolved and it became operational.
When it re-joins the cluster, will it become active automatically?

  • A. Yes, since 'Switch to higher priority cluster member' option on the cluster object properties is enabled by default.
  • B. No, since 'maintain' current active cluster member' option on the cluster object properties is enabled by default.
  • C. Yes, since 'Switch to higher priority cluster member' option is enabled by default on the Global Properties.
  • D. No, since 'maintain' current active cluster member' option is enabled by default on the Global Properties.

Answer: B


NEW QUESTION # 51
You want to gather and analyze threats to your mobile device. It has to be a lightweight app.
Which application would you use?

  • A. Check Point Protect
  • B. Check Point Capsule Cloud
  • C. SecuRemote
  • D. SmartEvent Client Info

Answer: A


NEW QUESTION # 52
From SecureXL perspective, what are the tree paths of traffic flow:

  • A. Initial Path; Medium Path; Accelerated Path
  • B. Firewall Path; Accept Path; Drop Path
  • C. Firewall Path; Accelerated Path; Medium Path
  • D. Layer Path; Blade Path; Rule Path

Answer: C


NEW QUESTION # 53
You want to allow your Mobile Access Users to connect to an internal file share. Adding the Mobile Application 'File Share' to your Access Control Policy in the SmartConsole didn't work. You will be only allowed to select Services for the 'Service & Application' column.
How to fix it?

  • A. A Quantum Spark Appliance is selected as Installation Target for the policy packet.
  • B. The Mobile Access Blade is not enabled for the Access Control Layer of the policy.
  • C. The Mobile Access Policy Source under Gateway properties Is set to Legacy Policy and not to Unified Access Policy.
  • D. The Mobile Access Blade is not enabled under Gateway properties.

Answer: C


NEW QUESTION # 54
What are the correct steps upgrading a HA cluster (M1 is active, M2 is passive) using Multi-Version Cluster (MVC)Upgrade?

  • A. 1) In SmartConsole, change the version of the cluster object 2) Upgrade the passive node M2 to R81.20 3) Enable the MVC mechanism on the upgraded R81.20 Cluster Member M2 #cphaconf mvc on 4) Install the Access Control Policy and make sure that the installation will not stop if installation on one cluster member fails 5) After examine the cluster states upgrade node M1 to R81.20 6) On each Cluster Member, disable the MVC mechanism and Install the Access Control Policy SmartConsole, change the version of the cluster object
  • B. 1) Upgrade the passive node M2 to R81.20 2) Enable the MVC mechanism on the upgraded R81.20 Cluster Member M2 #cphaconf mvc on 3) In SmartConsole, change the version of the cluster object 4) Install the Access Control Policy 5) After examine the cluster states upgrade node M1 to R81.20 6) On each Cluster Member, disable the MVC mechanism and Install the Access Control Policy upgrade the passive node M2 to R81.20
  • C. 1) Enable the MVC mechanism on both cluster members #cphaprob mvc on 2) Upgrade the passive node M2 to R81.20 3) In SmartConsole, change the version of the cluster object 4) Install the Access Control Policy and make sure that the installation will not stop if installation on one cluster member fails 5) After examine the cluster states upgrade node M1 to R81.20 6) On each Cluster Member, disable the MVC mechanism
  • D. 1) Enable the MVC mechanism on both cluster members #cphaprob mvc on 2) Upgrade the passive node M2 to R81.20 3) In SmartConsole, change the version of the cluster object 4) Install the Access Control Policy 5) After examine the cluster states upgrade node M1 to R81.20 6) On each Cluster Member, disable the MVC mechanism and Install the Access Control Policy

Answer: A


NEW QUESTION # 55
Automatic affinity means that if SecureXL is running, the affinity for each interface is automatically
reset every

  • A. 5 sec
  • B. 60 sec
  • C. 30 sec
  • D. 15 sec

Answer: B


NEW QUESTION # 56
Besides fw monitor, what is another command that can be used to capture packets?

  • A. traceroute
  • B. arp
  • C. tcpdump
  • D. ping

Answer: C


NEW QUESTION # 57
In the R81 SmartConsole, on which tab are Permissions and Administrators defined?

  • A. Manage and Settings
  • B. Logs and Monitor
  • C. Gateways and Servers
  • D. Security Policies

Answer: A


NEW QUESTION # 58
You can select the file types that are sent for emulation for all the Threat Prevention profiles. Each profile defines a(n) _____ or _____ action for the file types.

  • A. Prevent/Bypass
  • B. Inspect/Prevent
  • C. Detect/Bypass
  • D. Inspect/Bypass

Answer: D


NEW QUESTION # 59
What has to be taken into consideration when configuring Management HA?

  • A. For Management Server synchronization, only External Virtual Switches are supported. So, if you wanted to employ Virtual Routers instead, you have to reconsider your design.
  • B. SmartConsole must be closed prior to synchronized changes in the objects database
  • C. If you wanted to use Full Connectivity Upgrade, you must change the Implied Rules to allow FW1_cpredundant to pass before the Firewall Control Connections.
  • D. The Database revisions will not be synchronized between the management servers

Answer: D


NEW QUESTION # 60
What technologies are used to deny or permit network traffic?

  • A. Packet Filtering, Stateful Inspection, and Application Layer Firewall
  • B. Stateful Inspection, Firewall Blade, and URL/Application Blade
  • C. Firewall Blade, URL/Application Blade, and IPS
  • D. Stateful Inspection, URL/Application Blade, and Threat Prevention

Answer: A


NEW QUESTION # 61
......

Free CCSE 156-315.81.20 Exam Question: https://www.real4prep.com/156-315.81.20-exam.html

Dumps Practice Exam Questions Study Guide for the 156-315.81.20 Exam: https://drive.google.com/open?id=11022AH1iV2-ctQZLRqwNdXMmJh4hJMMI

Related Articles

more
CheckPoint 156-315.81.20 Certification Practice Exam