Examples of checkpoint 156 215.77

It is impossible to pass Check Point exam 156 215.77 exam without any help in the short term. Come to Actualtests soon and find the most advanced, correct and guaranteed Check Point exam 156 215.77 practice questions. You will get a surprising result by our Far out Check Point Certified Security Administrator – GAiA practice guides.

Q41. - (Topic 1) 

Where is the IPSO Boot Manager physically located on an IP Appliance? 

A. On the platform's BIOS 

B. In the directory /nvram 

C. On an external jump drive 

D. On built-in compact Flash memory 

Answer:


Q42. - (Topic 2) 

You are working with three other Security Administrators. Which SmartConsole component can be used to monitor changes to rules or object properties made by the other administrators? 

A. Eventia Tracker 

B. SmartView Monitor 

C. Eventia Monitor 

D. SmartView Tracker 

Answer:


Q43. - (Topic 1) 

How does the button Get Address, found on the Host Node Object > General Properties page retrieve the address? 

A. Route Table 

B. Address resolution (ARP, RARP) 

C. Name resolution (hosts file, DNS, cache) 

D. SNMP Get 

Answer:


Q44. - (Topic 2) 

SmartView Tracker R77 consists of three different modes. They are: 

A. Log, Track, and Management 

B. Log, Active, and Management 

C. Network and Endpoint, Active, and Management D. Log, Active, and Audit 

Answer:


Q45. - (Topic 1) 

Which command would provide the most comprehensive diagnostic information to Check Point Technical Support? 

A. cpstat - date.cpstat.txt 

B. fw cpinfo 

C. cpinfo -o date.cpinfo.txt 

D. diag 

Answer:


Q46. - (Topic 2) 

Your Security Management Server fails and does not reboot. One of your remote Security Gateways managed by the Security Management Server reboots. What occurs with the remote Gateway after reboot? 

A. Since the Security Management Server is not available, the remote Gateway cannot fetch the Security Policy. Therefore, all traffic is allowed through the Gateway. 

B. Since the Security Management Server is not available, the remote Gateway cannot fetch the Security Policy. Therefore, no traffic is allowed through the Gateway. 

C. The remote Gateway fetches the last installed Security Policy locally and passes traffic normally. The Gateway will log locally, since the Security Management Server is not available. 

D. Since the Security Management Server is not available, the remote Gateway uses the local Security Policy, but does not log traffic. 

Answer:


Q47. - (Topic 2) 

To check the Rule Base, some rules can be hidden so they do not distract the administrator from the unhidden rules. Assume that only rules accepting HTTP or SSH will be shown. How do you accomplish this? 

A. This cannot be configured since two selections (Service, Action) are not possible. 

B. Ask your reseller to get a ticket for Check Point SmartUse and deliver him the Security Management Server cpinfo file. 

C. In SmartDashboard menu, select Search > Rule Base Queries. In the window that opens, create a new Query, give it a name (e.g. "HTTP_SSH") and define a clause regarding the two services HTTP and SSH. When having applied this, define a second clause for the action Accept and combine them with the Boolean operator AND. 

D. In SmartDashboard, right-click in the column field Service > Query Column. Then, put the services HTTP and SSH in the list. Do the same in the field Action and select Accept here. 

Answer:


Q48. - (Topic 3) 

How do you configure the Security Policy to provide user access to the Captive Portal through an external (Internet) interface? 

A. Change the Identity Awareness settings under Global Properties to allow Captive Portal access on all interfaces. 

B. Change the Identity Awareness settings under Global Properties to allow Captive Portal access for an external interface. 

C. Change the gateway settings to allow Captive Portal access via an external interface. 

D. No action is necessary. This access is available by default. 

Answer:

351. - (Topic 3) 

For remote user authentication, which authentication scheme is NOT supported? 

A. Check Point Password 

B. TACACS 

C. SecurID 

D. RADIUS 

Answer:


Q49. - (Topic 2) 

A Security Policy installed by another Security Administrator has blocked all SmartDashboard connections to the stand-alone installation of R77. After running the command fw unloadlocal, you are able to reconnect with SmartDashboard and view all changes. Which of the following change is the most likely cause of the block? 

A. A Stealth Rule has been configured for the R77 Gateway. 

B. The Gateway Object representing your Gateway was configured as an Externally Managed VPN Gateway. 

C. The Security Policy installed to the Gateway had no rules in it. 

D. The Allow Control Connections setting in Policy > Global Properties has been unchecked. 

Answer:


Q50. - (Topic 3) 

You are the Security Administrator for MegaCorp. In order to see how efficient your firewall Rule Base is, you would like to see how often the particular rules match. Where can you see it? Give the BEST answer. 

A. In the SmartView Tracker, if you activate the column Matching Rate. 

B. It is not possible to see it directly. You can open SmartDashboard and select UserDefined in the Track column. Afterwards, you need to create your own program with an external counter. 

C. In SmartReporter, in the section Firewall Blade - Activity > Network Activity with information concerning Top Matched Logged Rules. 

D. SmartReporter provides this information in the section Firewall Blade - Security > Rule Base Analysis with information concerning Top Matched Logged Rules. 

Answer: