ExamGecko
Login
Home / Checkpoint / 156-215.81 / List of questions
Ask Question

Checkpoint 156-215.81 Practice Test - Questions Answers, Page 4

Add to Whishlist

List of questions

Question 31

Report Export Collapse

The CDT utility supports which of the following?

Major version upgrades to R77.30
Major version upgrades to R77.30
Only Jumbo HFA's and hotfixes
Only Jumbo HFA's and hotfixes
Only major version upgrades to R80.10
Only major version upgrades to R80.10
All upgrades
All upgrades
Suggested answer: D
Explanation:

The CDT utility supports all upgrades, including major version upgrades, Jumbo HFA's, and hotfixes3.

Reference:Check Point Upgrade Service Engine (CPUSE) - Gaia Deployment Agent

asked 16/09/2024
Demilson Mantegazine
42 questions

Question 32

Report Export Collapse

Using ClusterXL, what statement is true about the Sticky Decision Function?

Can only be changed for Load Sharing implementations
Can only be changed for Load Sharing implementations
All connections are processed and synchronized by the pivot
All connections are processed and synchronized by the pivot
Is configured using cpconfig
Is configured using cpconfig
Is only relevant when using SecureXL
Is only relevant when using SecureXL
Suggested answer: A
Explanation:

The Sticky Decision Function (SDF) can only be changed for Load Sharing implementations, not for High Availability implementations4.

Reference:Check Point ClusterXL R81 Administration Guide

asked 16/09/2024
Justin NJOCK
51 questions

Question 33

Report Export Collapse

What command would show the API server status?

cpm status
cpm status
api restart
api restart
api status
api status
show api status
show api status
Suggested answer: D
Explanation:

The commandapi statusshows the API server status, including whether it is enabled or not, the port number, and the API version1.

Reference:Check Point R81 API Reference Guide

asked 16/09/2024
Farid Tannouch
40 questions

Question 34

Report Export Collapse

How Capsule Connect and Capsule Workspace differ?

Capsule Connect provides a Layer3 VPN. Capsule Workspace provides a Desktop with usable applications
Capsule Connect provides a Layer3 VPN. Capsule Workspace provides a Desktop with usable applications
Capsule Workspace can provide access to any application
Capsule Workspace can provide access to any application
Capsule Connect provides Business data isolation
Capsule Connect provides Business data isolation
Capsule Connect does not require an installed application at client
Capsule Connect does not require an installed application at client
Suggested answer: A
Explanation:

Capsule Connect provides a Layer 3 VPN that allows users to access corporate resources securely from their mobile devices2.Capsule Workspace provides a secure container on the mobile device that isolates business data and applications from personal data and applications3.Capsule Workspace also provides a desktop with usable applications such as email, calendar, contacts, documents, and web applications3.

Reference:Check Point Capsule Connect,Check Point Capsule Workspace

asked 16/09/2024
Jarrell John Garcia
49 questions

Question 35

Report Export Collapse

Which of the following is a new R80.10 Gateway feature that had not been available in R77.X and older?

The rule base can be built of layers, each containing a set of the security rules. Layers are inspected in the order in which they are defined, allowing control over the rule base flow and which security functionalities take precedence.
The rule base can be built of layers, each containing a set of the security rules. Layers are inspected in the order in which they are defined, allowing control over the rule base flow and which security functionalities take precedence.
Limits the upload and download throughput for streaming media in the company to 1 Gbps.
Limits the upload and download throughput for streaming media in the company to 1 Gbps.
Time object to a rule to make the rule active only during specified times.
Time object to a rule to make the rule active only during specified times.
Sub Policies are sets of rules that can be created and attached to specific rules. If the rule is matched, inspection will continue in the sub policy attached to it rather than in the next rule.
Sub Policies are sets of rules that can be created and attached to specific rules. If the rule is matched, inspection will continue in the sub policy attached to it rather than in the next rule.
Suggested answer: D
Explanation:

Sub Policies are a new feature in R80.10 Gateway that allow creating and attaching sets of rules to specific rules in the main policy4.Sub Policies are useful for delegating permissions, managing large rule bases, and applying different inspection profiles4. The other options are not new features in R80.10 Gateway.

Reference:Check Point R80.10 Security Management Administration Guide

asked 16/09/2024
Aviv Beck
45 questions

Question 36

Report Export Collapse

What are the three components for Check Point Capsule?

Capsule Docs, Capsule Cloud, Capsule Connect
Capsule Docs, Capsule Cloud, Capsule Connect
Capsule Workspace, Capsule Cloud, Capsule Connect
Capsule Workspace, Capsule Cloud, Capsule Connect
Capsule Workspace, Capsule Docs, Capsule Connect
Capsule Workspace, Capsule Docs, Capsule Connect
Capsule Workspace, Capsule Docs, Capsule Cloud
Capsule Workspace, Capsule Docs, Capsule Cloud
Suggested answer: D
Explanation:

The three components for Check Point Capsule are Capsule Workspace, Capsule Docs, and Capsule Cloud123.Capsule Workspace provides a secure container on the mobile device that isolates business data and applications from personal data and applications2.Capsule Docs protects business documents everywhere they go with encryption and access control1.Capsule Cloud provides cloud-based security services to protect mobile users from threats3.

Reference:Check Point Capsule,Check Point Capsule Workspace,Mobile Secure Workspace with Capsule

asked 16/09/2024
jitendra makwana
42 questions

Question 37

Report Export Collapse

Full synchronization between cluster members is handled by Firewall Kernel. Which port is used for this?

UDP port 265
UDP port 265
TCP port 265
TCP port 265
UDP port 256
UDP port 256
TCP port 256
TCP port 256
Suggested answer: B
Explanation:

The port used for full synchronization between cluster members is TCP port 2654.This port is used by the Firewall Kernel to send and receive synchronization data, such as connection tables, NAT tables, and VPN keys4.UDP port 8116 is used by the Cluster Control Protocol (CCP) for internal communications between cluster members4.

Reference:How does the Cluster Control Protocol function in working and failure scenarios for gateway clusters?

asked 16/09/2024
Carlos Roberto
56 questions

Question 38

Report Export Collapse

What is true about the IPS-Blade?

in R80, IPS is managed by the Threat Prevention Policy
in R80, IPS is managed by the Threat Prevention Policy
in R80, in the IPS Layer, the only three possible actions are Basic, Optimized and Strict
in R80, in the IPS Layer, the only three possible actions are Basic, Optimized and Strict
in R80, IPS Exceptions cannot be attached to ''all rules''
in R80, IPS Exceptions cannot be attached to ''all rules''
in R80, the GeoPolicy Exceptions and the Threat Prevention Exceptions are the same
in R80, the GeoPolicy Exceptions and the Threat Prevention Exceptions are the same
Suggested answer: A
Explanation:

In R80, IPS is managed by the Threat Prevention Policy567.The Threat Prevention Policy defines how to protect the network from malicious traffic using IPS, Anti-Bot, Anti-Virus, and Threat Emulation software blades5.The IPS layer in the Threat Prevention Policy allows configuring IPS protections and actions for different network segments5. The other options are not true about the IPS-Blade.

Reference:Check Point IPS Datasheet,Check Point IPS Software Blade,Quantum Intrusion Prevention System (IPS)

asked 16/09/2024
Avishek Das
44 questions

Question 39

Report Export Collapse

Due to high CPU workload on the Security Gateway, the security administrator decided to purchase a new multicore CPU to replace the existing single core CPU. After installation, is the administrator required to perform any additional tasks?

Go to clash-Run cpstop | Run cpstart
Go to clash-Run cpstop | Run cpstart
Go to clash-Run cpconfig | Configure CoreXL to make use of the additional Cores | Exit cpconfig | Reboot Security Gateway
Go to clash-Run cpconfig | Configure CoreXL to make use of the additional Cores | Exit cpconfig | Reboot Security Gateway
Administrator does not need to perform any task. Check Point will make use of the newly installed CPU and Cores
Administrator does not need to perform any task. Check Point will make use of the newly installed CPU and Cores
Go to clash-Run cpconfig | Configure CoreXL to make use of the additional Cores | Exit cpconfig | Reboot Security Gateway | Install Security Policy
Go to clash-Run cpconfig | Configure CoreXL to make use of the additional Cores | Exit cpconfig | Reboot Security Gateway | Install Security Policy
Suggested answer: B
Explanation:

The correct answer is B because after installing a new multicore CPU, the administrator needs to configure CoreXL to make use of the additional cores and reboot the Security Gateway.Installing the Security Policy is not necessary because it does not affect the CoreXL configuration1.

Reference:Check Point R81 Security Management Administration Guide

asked 16/09/2024
Yuwadee Srisathan
43 questions

Question 40

Report Export Collapse

When installing a dedicated R80 SmartEvent server, what is the recommended size of the root partition?

Any size
Any size
Less than 20GB
Less than 20GB
More than 10GB and less than 20 GB
More than 10GB and less than 20 GB
At least 20GB
At least 20GB
Suggested answer: D
Explanation:

The correct answer is D because the recommended size of the root partition for a dedicated R80 SmartEvent server is at least 20GB2. Any size, less than 20GB, or more than 10GB and less than 20GB are not sufficient for the SmartEvent server.

Reference:Check Point R80.40 Installation and Upgrade Guide

asked 16/09/2024
Valencia, Luis
46 questions
Total 401 questions
Go to page: of 41
Open VPLUS File
Convert VPLUS to PDF

Related questions

Which Check Point software blade provides Application Security and identity control?
How are the backups stored in Check Point appliances?
What needs to be configured if the NAT property 'Translate destination on client side' is not enabled in Global properties?
Fill in the blank: The position of an implied rule is manipulated in the __________________ window.
Which is a suitable command to check whether Drop Templates are activated or not?
When should you generate new licenses?
Which of the following is true about Stateful Inspection?
One of major features in R80.x SmartConsole is concurrent administration. Which of the following is NOT possible considering that AdminA, AdminB, and AdminC are editing the same Security Policy?
In the Check Point Security Management Architecture, which component(s) can store logs?
Which of the following statements about Site-to-Site VPN Domain-based is NOT true?