Checkpoint 156-215.81 Practice Test - Questions Answers, Page 30

SmartConsole, SmartEvent GUI client, andSmartView Web Applicationallow viewing of billions of consolidated logs and shows them as prioritized security events1.SmartView Web Application is a web-based interface that provides access to SmartEvent reports and dashboards2.

Reference:Check Point R81 Security Management Administration Guide,Check Point R81 SmartEvent Administration Guide

The main difference between Static NAT and Hide NAT is that Static NAT allows incoming and outgoing connections, while Hide NAT only allows outgoing connections4. Static NAT translates a single IP address to another single IP address, while Hide NAT translates a group of IP addresses to a single IP address. Static NAT is used to expose internal servers to external networks, while Hide NAT is used to hide internal hosts from external networks.

Reference:Check Point R81 Firewall Administration Guide

A Check Point Software license consists of two components, the Software Blade and the Software Container.There arethreetypes of Software Containers:Security Management, Security Gateway, and Endpoint Security1. A Software Blade is a specific security function that can be enabled or disabled on a Software Container. A Software Container is a platform that runs one or more Software Blades. Security Management is a container that manages the security policy and configuration of Security Gateways. Security Gateway is a container that enforces the security policy on network traffic. Endpoint Security is a container that protects endpoints from threats and data loss.

Reference:Check Point Licensing and Contract Operations User Guide

With the User Directory Software Blade, you can create user definitions on a(n)LDAPServer2. LDAP stands for Lightweight Directory Access Protocol and is a protocol for accessing and managing user information stored in a directory service. The User Directory Software Blade enables integration with LDAP servers such as Microsoft Active Directory, Novell eDirectory, and OpenLDAP.

Reference:Check Point R81 Identity Awareness Administration Guide

The default tracking option of a rule isLog3. This means that the Security Gateway will generate a log entry for every connection that matches the rule. The log entry will contain information such as source, destination, service, action, and time. Other tracking options include None, Alert, Mail, SNMP Trap, User Alert, and Accounting.

Reference:Check Point R81 Firewall Administration Guide

The following cannot be configured in an Access Role Object:Time4.An Access Role Object is a way to define a group of users based on four criteria: Networks, Users, Machines, and Locations5. Networks are IP addresses or network objects that represent the source or destination of the traffic. Users are user accounts or user groups from an identity source such as LDAP or RADIUS. Machines are endpoints that are identified by MAC addresses or certificates. Locations are geographical regions based on IP addresses.

Reference:Check Point R81 Firewall Administration Guide,Check Point R81 Identity Awareness Administration Guide

When using Automatic Hide NAT,Source Port Address Translation (PAT)is enabled by default1. This means that the source IP address and port number are translated to a different IP address and port number. This allows multiple hosts to share a single IP address for outbound connections.

Reference:Check Point R81 Firewall Administration Guide

A main component of the Check Point security management architecture isSmartConsole2. SmartConsole is a unified graphical user interface that allows administrators to manage multiple security functions such as firewall, VPN, IPS, application control, URL filtering, identity awareness, and more. SmartConsole connects to the Security Management Server and interacts with other Check Point components such as Security Gateways and Endpoint Security Servers.

Reference:Check Point R81 Security Management Administration Guide

The default Gaia user that has full read/write access isadmin3. The admin user is the superuser that can perform any administrative task on the Gaia system, such as configuring network settings, installing software updates, managing licenses, creating snapshots, and more. The admin user can also access the Gaia Portal, which is a web-based interface for managing Gaia settings and features.

Reference:Check Point R81 Gaia Administration Guide