156-215.81 Practice Exam Questions and Answers

A.  

3rd Party integration of CLI and API for Gateways prior to R80.

B.  

A complete CLI and API interface using SSH and custom CPCode integration.

C.  

3rd Party integration of CLI and API for Management prior to R80.

D.  

A complete CLI and API interface for Management with 3rd Party integration.

A.  

Microsoft Publisher

B.  

JSON

C.  

Microsoft Word

D.  

RC4 Encryption

A.  

cpm status

B.  

api restart

C.  

api status

D.  

show api status

A.  

The SmartLicensing GUI tool must be launched from the SmartConsole for the Online Activation tool to start automatically.

B.  

No action is required if the firewall has internet access and a DNS server to resolve domain names.

C.  

Using the Gaia First Time Configuration Wizard, the appliance connects to the Check Point User Center and downloads all necessary licenses and contracts.

D.  

The cpinfo command must be run on the firewall with the switch -online-license-activation.

A.  

Add tcpdump to CLISH using add command.Create a new access role.Add tcpdump to the role.Create new user with any UID and assign role to the user.

B.  

Add tcpdump to CLISH using add command.Create a new access role.Add tcpdump to the role.Create new user with UID 0 and assign role to the user.

C.  

Create a new access role.Add expert-mode access to the role.Create new user with UID 0 and assign role to the user.

D.  

Create a new access role.Add expert-mode access to the role.Create new user with any UID and assign role to the user.

A.  

Object Browser

B.  

Object Editor

C.  

Object Navigator

D.  

Object Explorer

A.  

Full

B.  

Custom

C.  

Complete

D.  

Light

A.  

Check Point INSPECT Engine

B.  

Check Point Upgrade Service Engine

C.  

Check Point Update Engine

D.  

Check Point Upgrade Installation Service

A.  

Logout of the session

B.  

File > Save

C.  

Install database

D.  

Publish the session

A.  

restore_backup

B.  

import backup

C.  

cp_merge

D.  

migrate import

A.  

Connection Cache

B.  

State Cache

C.  

State Table

D.  

Network Table

A.  

Only when there is Multicast solution set up

B.  

There is Load Sharing solution set up

C.  

Only when there is Unicast solution set up

D.  

There is High Availability solution set up

A.  

Tracking

B.  

Log

C.  

None

D.  

Alert

A.  

the user connects and authenticates

B.  

office mode is initiated

C.  

the user requests a connection

D.  

the user connects

A.  

fw ctl get int activate_drop_templates

B.  

fwaccel stat

C.  

fwaccel stats

D.  

fw ctl templates –d

A.  

All-in-one (stand-alone)

B.  

Log server

C.  

SmartEvent

D.  

Multi-domain management server

A.  

The firewall topologies

B.  

NAT Rules

C.  

The Rule Base

D.  

The VPN Domains

A.  

Ordered Layers and Inline Layers

B.  

Inbound Layers and Outbound Layers

C.  

R81.10 does not support Layers

D.  

Structured Layers and Overlap Layers

A.  

NAT

B.  

Firewall

C.  

Global Properties

D.  

Object Explorer

A.  

SmartUpdate installation

B.  

DVD media created with Check Point ISOMorphic

C.  

USB media created with Check Point ISOMorphic

D.  

Cloud based installation

A.  

Remote Access

B.  

Cloud IdP (Identity Provider)

C.  

Active Directory Query

D.  

RADIUS

A.  

set interface Mgmt ipv4-address 192.168.80.200 mask-length 24set static-route default nexthop gateway address 192.168.80.1 onsave config

B.  

add interface Mgmt ipv4-address 192.168.80.200 255.255.255.0add static-route 0.0.0.0.0.0.0.0 gw 192.168.80.1 onsave config

C.  

set interface Mgmt ipv4-address 192.168.80.200 255.255.255.0add static-route 0.0.0.0.0.0.0.0 gw 192.168.80.1 onsave config

D.  

add interface Mgmt ipv4-address 192.168.80.200 mask-length 24add static-route default nexthop gateway address 192.168.80.1 onsave config

A.  

Those rules have been published in the current session.

B.  

Rules have been edited by the logged in administrator, but the policy has not been published yet.

C.  

Another user has currently locked the rules for editing.

D.  

The configuration lock is present. Click the pen symbol in order to gain the lock.

A.  

False, log servers are configured on the Log Server General Properties

B.  

True, all Security Gateways will only forward logs with a SmartCenter Server configuration

C.  

True, all Security Gateways forward logs automatically to the Security Management Server

D.  

False, log servers are enabled on the Security Gateway General Properties

A.  

Cloud/data Center

B.  

perimeter

C.  

Sandbox

D.  

Guest Network

A.  

CPASE - Check Point Automatic Service Engine

B.  

CPAUE - Check Point Automatic Update Engine

C.  

CPDAS - Check Point Deployment Agent Service

D.  

CPUSE - Check Point Upgrade Service Engine

A.  

Security Gateway

B.  

Security Gateway container

C.  

Management server

D.  

Management container

A.  

AD Query

B.  

Terminal Servers Endpoint Identity Agent

C.  

Endpoint Identity Agent and Browser-Based Authentication

D.  

RADIUS and Account Logon

A.  

System backup

B.  

Save Configuration

C.  

Migrate

D.  

snapshot

A.  

UDP

B.  

CCP

C.  

TDP

D.  

HTTP

A.  

IPSec VPN does not require installation of a resident VPN client

B.  

SSL VPN requires installation of a resident VPN client

C.  

SSL VPN and IPSec VPN are the same

D.  

IPSec VPN requires installation of a resident VPN client and SSL VPN requires only an installed Browser

A.  

Revisions

B.  

Gateway installations

C.  

Installation history

D.  

Gateway history

A.  

There are two default users and neither can be deleted.

B.  

There are two default users and one cannot be deleted.

C.  

There is one default user that can be deleted.

D.  

There is one default user that cannot be deleted.

A.  

Verify a Security Policy

B.  

Open a terminal shell

C.  

Add a static route

D.  

View Security Management GUI Clients

A.  

Server, Username, Password, Path, Version

B.  

Username, Password, Path, Version

C.  

Server, Protocol, Username, Password, Destination Path

D.  

Server, Protocol, Username, Password, Path

A.  

cpconfig

B.  

Management Command Line

C.  

SmartConsole

D.  

SmartUpdate

A.  

Incoming

B.  

Internal

C.  

External

D.  

Outgoing

A.  

Threat Emulation never delivers a file and takes more than 3 minutes to complete

B.  

Threat Extraction always delivers a file and takes less than a second to complete

C.  

Threat Emulation never delivers a file that takes less than a second to complete

D.  

Threat Extraction never delivers a file and takes more than 3 minutes to complete

A.  

cphaprob state

B.  

cphaprob status

C.  

cphaprob

D.  

cluster state

A.  

Policy Activation Point (PAP) and Policy Decision Point (PDP)

B.  

Policy Manipulation Point (PMP) and Policy Activation Point (PAP)

C.  

Policy Enforcement Point (PEP) and Policy Manipulation Point (PMP)

D.  

Policy Decision Point (PDP) and Policy Enforcement Point (PEP)

A.  

Client machine IP address.

B.  

Network location, the identity of a user and the identity of a machine.

C.  

Log server IP address.

D.  

Gateway proxy IP address.

A.  

DNS Rule is using one of the new feature of R80 where an administrator can mark a rule with the padlock icon to let other administrators know it is important.

B.  

Another administrator is logged into the Management and currently editing the DNS Rule.

C.  

DNS Rule is a placeholder rule for a rule that existed in the past but was deleted.

D.  

This is normal behavior in R80 when there are duplicate rules in the Rule Base.

A.  

The Publish operation sends the modifications made via SmartConsole in the private session and makes them public

B.  

The Security Management Server installs the updated policy and the entire database on Security Gateways

C.  

The Security Management Server installs the updated session and the entire Rule Base on Security Gateways

D.  

Modifies network objects, such as servers, users, services, or IPS profiles, but not the Rule Base

A.  

Stateful Inspection is limited to Layer 3 visibility, with no Layer 4 to Layer 7 visibility capabilities.

B.  

When it comes to performance, proxies were significantly faster than stateful inspection firewalls.

C.  

Proxies offer far more security because of being able to give visibility of the payload (the data).

D.  

When it comes to performance, stateful inspection was significantly faster than proxies.

A.  

Accounting

B.  

Suppression

C.  

Accounting/Suppression

D.  

Accounting/Extended

A.  

2

B.  

7

C.  

6

D.  

4

A.  

Name of the application, identity of the user, and identity of the machine

B.  

Identity of the machine, username, and certificate

C.  

Network location, identity of a user, and identity of a machine

D.  

Browser-Based Authentication, identity of a user, and network location

A.  

One

B.  

Three

C.  

Two

D.  

Infinite

A.  

Distributed

B.  

Standalone

C.  

Bridge

A.  

Log, send snmp trap, email

B.  

Drop packet, alert, none

C.  

Log, alert, none

D.  

Log, allow packets, email

A.  

Application database

B.  

AppWiki

C.  

Application-Forensic Database

D.  

Application Library

A.  

URL Filtering and Network

B.  

Network and Threat Prevention

C.  

Application Control and URL Filtering

D.  

Network and Application Control

A.  

sysdown

B.  

exit

C.  

halt

D.  

shut-down

A.  

Any size

B.  

Less than 20GB

C.  

More than 10GB and less than 20 GB

D.  

At least 20GB

A.  

SmartConsole, Security Management, and Security Gateway

B.  

Smart Console, Standalone, and Security Management

C.  

SmartConsole, Security policy, and Logs & Monitoring

D.  

GUI-Client, Security Management, and Security Gateway