ExamGecko
Search Search Login
Home Home / Checkpoint / 156-215.81

Checkpoint 156-215.81 Practice Test - Questions Answers, Page 6

Question list
Search
Search
Open VPLUS File
Convert VPLUS to PDF

Related questions

What needs to be configured if the NAT property 'Translate destination on client side' is not enabled in Global properties?
Which is a suitable command to check whether Drop Templates are activated or not?
Which Check Point software blade provides Application Security and identity control?
How are the backups stored in Check Point appliances?
Fill in the blank: The position of an implied rule is manipulated in the __________________ window.
Which of the following is true about Stateful Inspection?
Fill in the blank: With the User Directory Software Blade, you can create user definitions on a(n) ___________ Server.
What is the main difference between Threat Extraction and Threat Emulation?
Which of the following is NOT a method used by Identity Awareness for acquiring identity?
When should you generate new licenses?

Question 51

Report
Export
Collapse

You are asked to check the status of several user-mode processes on the management server and gateway. Which of the following processes can only be seen on a Management Server?

A.
fwd
A.
fwd
Answers
B.
fwm
B.
fwm
Answers
C.
cpd
C.
cpd
Answers
D.
cpwd
D.
cpwd
Answers
Suggested answer: B

Explanation:

Thefwmprocess is responsible for managing the communication between the SmartConsole and the Security Management Server.It can only be seen on a Management Server12.

Reference:Check Point Processes and Daemons,Check Point CCSA - R81: Practice Test & Explanation

Question 52

Report
Export
Collapse

R80.10 management server can manage gateways with which versions installed?

A.
Versions R77 and higher
A.
Versions R77 and higher
Answers
B.
Versions R76 and higher
B.
Versions R76 and higher
Answers
C.
Versions R75.20 and higher
C.
Versions R75.20 and higher
Answers
D.
Version R75 and higher
D.
Version R75 and higher
Answers
Suggested answer: B

Explanation:

The R80.10 management server can manage gateways with versions R76 and higher34. Versions lower than R76 are not supported by the R80.10 management server.

Reference:Check Point R80.10 Release Notes,Free Check Point CCSA Sample Questions and Study Guide

Question 53

Report
Export
Collapse

You want to verify if there are unsaved changes in GAiA that will be lost with a reboot. What command can be used?

A.
show unsaved
A.
show unsaved
Answers
B.
show save-state
B.
show save-state
Answers
C.
show configuration diff
C.
show configuration diff
Answers
D.
show config-state
D.
show config-state
Answers
Suggested answer: D

Explanation:

The commandshow config-statecan be used to verify if there are unsaved changes in GAiA that will be lost with a reboot . The other commands are not valid in GAiA.

Reference: [Check Point GAiA Administration Guide], [Check Point CCSA - R81: Practice Test & Explanation]

Question 54

Report
Export
Collapse

In what way is Secure Network Distributor (SND) a relevant feature of the Security Gateway?

A.
SND is a feature to accelerate multiple SSL VPN connections
A.
SND is a feature to accelerate multiple SSL VPN connections
Answers
B.
SND is an alternative to IPSec Main Mode, using only 3 packets
B.
SND is an alternative to IPSec Main Mode, using only 3 packets
Answers
C.
SND is used to distribute packets among Firewall instances
C.
SND is used to distribute packets among Firewall instances
Answers
D.
SND is a feature of fw monitor to capture accelerated packets
D.
SND is a feature of fw monitor to capture accelerated packets
Answers
Suggested answer: C

Explanation:

The Secure Network Distributor (SND) is a feature of the Security Gateway that is used to distribute packets among Firewall instances . It improves the performance and scalability of the Firewall by utilizing multiple CPU cores. The other options are not related to SND.

Reference: [Check Point Security Gateway Architecture and Packet Flow], [Free Check Point CCSA Sample Questions and Study Guide]

Question 55

Report
Export
Collapse

Sticky Decision Function (SDF) is required to prevent which of the following? Assume you set up an Active-Active cluster.

A.
Symmetric routing
A.
Symmetric routing
Answers
B.
Failovers
B.
Failovers
Answers
C.
Asymmetric routing
C.
Asymmetric routing
Answers
D.
Anti-Spoofing
D.
Anti-Spoofing
Answers
Suggested answer: B

Explanation:

The Sticky Decision Function (SDF) is required to preventfailoversin an Active-Active cluster. The SDF ensures that the same cluster member handles all connections that belong to a certain session.If the SDF is not enabled, different cluster members may handle different connections of the same session, which may cause a failover or a drop12.

Reference:ClusterXL Administration Guide R81,Check Point CCSA - R81: Practice Test & Explanation

Question 56

Report
Export
Collapse

What are the steps to configure the HTTPS Inspection Policy?

A.
Go to Manage&Settings > Blades > HTTPS Inspection > Configure in SmartDashboard
A.
Go to Manage&Settings > Blades > HTTPS Inspection > Configure in SmartDashboard
Answers
B.
Go to Application&url filtering blade > Advanced > Https Inspection > Policy
B.
Go to Application&url filtering blade > Advanced > Https Inspection > Policy
Answers
C.
Go to Manage&Settings > Blades > HTTPS Inspection > Policy
C.
Go to Manage&Settings > Blades > HTTPS Inspection > Policy
Answers
D.
Go to Application&url filtering blade > Https Inspection > Policy
D.
Go to Application&url filtering blade > Https Inspection > Policy
Answers
Suggested answer: C

Explanation:

The steps to configure the HTTPS Inspection Policy are as follows34:

Go toManage & Settings>Blades>HTTPS Inspection>Policy.

Click onNew HTTPS Inspection Ruleor select an existing rule and click onEdit Rule.

Define theSource,Destination, andActionfor the rule. The action can be eitherInspect,Bypass, orAsk.

Click onOKand then onInstall Policyto apply the changes.

Reference:HTTPS Inspection R81 Administration Guide,Check Point CCSA - R81: Practice Test & Explanation

Question 57

Report
Export
Collapse

What is the difference between SSL VPN and IPSec VPN?

A.
IPSec VPN does not require installation of a resident VPN client
A.
IPSec VPN does not require installation of a resident VPN client
Answers
B.
SSL VPN requires installation of a resident VPN client
B.
SSL VPN requires installation of a resident VPN client
Answers
C.
SSL VPN and IPSec VPN are the same
C.
SSL VPN and IPSec VPN are the same
Answers
D.
IPSec VPN requires installation of a resident VPN client and SSL VPN requires only an installed Browser
D.
IPSec VPN requires installation of a resident VPN client and SSL VPN requires only an installed Browser
Answers
Suggested answer: D

Explanation:

The difference between SSL VPN and IPSec VPN is that IPSec VPN requires installation of a resident VPN client and SSL VPN requires only an installed browser5. IPSec VPN uses a pre-shared key or certificates to authenticate the endpoints and encrypts the data at the network layer. SSL VPN uses SSL/TLS protocols to authenticate the endpoints and encrypts the data at the application layer.

Reference:Check Point Remote Access VPN Administration Guide R81, [Free Check Point CCSA Sample Questions and Study Guide]

Question 58

Report
Export
Collapse

Which statement is NOT TRUE about Delta synchronization?

A.
Using UDP Multicast or Broadcast on port 8161
A.
Using UDP Multicast or Broadcast on port 8161
Answers
B.
Using UDP Multicast or Broadcast on port 8116
B.
Using UDP Multicast or Broadcast on port 8116
Answers
C.
Quicker than Full sync
C.
Quicker than Full sync
Answers
D.
Transfers changes in the Kernel tables between cluster members
D.
Transfers changes in the Kernel tables between cluster members
Answers
Suggested answer: A

Explanation:

The statement that is not true about Delta synchronization is that it uses UDP Multicast or Broadcast on port8161.The correct port number for Delta synchronization is811612. The other statements are true about Delta synchronization.

Reference:ClusterXL Administration Guide R81,Check Point CCSA - R81: Practice Test & Explanation

Question 59

Report
Export
Collapse

Under which file is the proxy arp configuration stored?

A.
$FWDIR/state/proxy_arp.conf on the management server
A.
$FWDIR/state/proxy_arp.conf on the management server
Answers
B.
$FWDIR/conf/local.arp on the management server
B.
$FWDIR/conf/local.arp on the management server
Answers
C.
$FWDIR/state/_tmp/proxy.arp on the security gateway
C.
$FWDIR/state/_tmp/proxy.arp on the security gateway
Answers
D.
$FWDIR/conf/local.arp on the gateway
D.
$FWDIR/conf/local.arp on the gateway
Answers
Suggested answer: D

Explanation:

The file that stores the proxy arp configuration is$FWDIR/conf/local.arpon the gateway3. The other files are not related to proxy arp configuration.

Reference:How to configure Proxy ARP for Manual NAT on Security Gateway, [Check Point CCSA - R81: Practice Test & Explanation]

Question 60

Report
Export
Collapse

Customer's R80 management server needs to be upgraded to R80.10. What is the best upgrade method when the management server is not connected to the Internet?

A.
Export R80 configuration, clean install R80.10 and import the configuration
A.
Export R80 configuration, clean install R80.10 and import the configuration
Answers
B.
CPUSE online upgrade
B.
CPUSE online upgrade
Answers
C.
CPUSE offline upgrade
C.
CPUSE offline upgrade
Answers
D.
SmartUpdate upgrade
D.
SmartUpdate upgrade
Answers
Suggested answer: C

Explanation:

The best upgrade method when the management server is not connected to the Internet is CPUSE offline upgrade . This method allows you to download the upgrade package from another source and install it manually on the management server. The other methods require Internet connection or are not supported for R80.10.

Reference: [R80.10 Upgrade Verification and FAQ], [Check Point CCSA - R81: Practice Test & Explanation]

Total 401 questions
Go to page: of 41
ExamGecko

Copyright @2023 ExamGecko | All right reserved

Mail us: [email protected]
About us
Contact us
Twitter X
Facebook
Medium
Convert VPLUS to PDF
Open VPLUS files Easily and Quickly
Privacy Policy
Disclaimer
Terms