Checkpoint 156-315.81 Practice Test - Questions Answers, Page 31

The tool that is used to enable ClusterXL is cpconfig.ClusterXL is a software-based Load Sharing and High Availability solution that distributes network traffic between clusters of redundant Security Gateways1.ClusterXL can be enabled on Check Point Security Gateways running on Gaia OS, SecurePlatform OS, IPSO OS, or X-Series XOS2.

To enable ClusterXL, the administrator must run the cpconfig command on each cluster member and select the option to enable ClusterXL. This will prompt the administrator to choose the ClusterXL mode (High Availability or Load Sharing) and the Cluster Control Protocol (CCP) mode (Broadcast or Multicast).After enabling ClusterXL, the administrator must reboot the cluster members for the changes to take effect34.

Therefore, the correct answer is B) The tool that is used to enable ClusterXL is cpconfig.

1, Introduction to ClusterXL - Check Point Software

2, ClusterXL Requirements and Compatibility - Check Point Software

3, Configuring ClusterXL - Check Point Software

4, How to configure ClusterXL - Check Point Software Technologies

The Access Control policy supports two policy layers. These are the Network layer and the Application & URL Filtering layer. The Network layer contains rules that control the network traffic based on the source, destination, service, and action.The Application & URL Filtering layer contains rules that control the application and web access based on the application, site category, and user identity12.

The Access Control policy can also use inline layers, which are sub-policies that are embedded within a rule.Inline layers allow more granular control over specific traffic or scenarios, such as VPN, Mobile Access, or different user groups13.However, inline layers are not considered as separate policy layers, but rather as extensions of the parent rule4.

Therefore, the correct answer is A. The Access Control policy supports two policy layers.

1, Policy Layers in R80.x - Check Point CheckMates

2, Access Control policies, layers, and rules | Check Point Firewall ...

3, Chapter 8: Introduction to Policies, Layers, and Rules - Check Point ...

4, Creating an Access Control Policy - Check Point Software

One of the major features in R81 SmartConsole is concurrent administration. This feature allows multiple administrators to work on the same Security Policy simultaneously, without blocking each other or creating conflicts.Concurrent administration improves the efficiency and productivity of security management operations1.

However, not all of the options given are possible considering that AdminA, AdminB and AdminC are editing the same Security Policy. The correct answer is B) AdminA and AdminB are editing the same rule at the same time. This is not possible because concurrent administration uses a locking mechanism to prevent multiple administrators from modifying the same rule or object at the same time. When an administrator clicks on a rule or an object, it becomes locked and a lock icon appears next to it.The lock icon shows the name of the administrator who is working on that rule or object, and prevents other administrators from editing it until it is unlocked12.

Therefore, the other options are possible considering that AdminA, AdminB and AdminC are editing the same Security Policy.Option A is possible because a lock icon shows that a rule or an object is locked and will be available when the administrator who locked it finishes working on it or logs out of SmartConsole12.Option C is possible because a lock icon next to a rule informs that any administrator is working on this particular rule, and hovering over the lock icon will show the name of that administrator12.Option D is possible because AdminA, AdminB and AdminC are editing three different rules at the same time, which does not create any conflicts or blockages12.

To set the IP address and default gateway of the Management interface on a Check Point appliance, you can use the following commands:

set interface Mgmt ipv4-address 192.168.80.200 mask-length 24- This command sets the IPv4 address of the Management interface to 192.168.80.200 and the subnet mask to 255.255.255.0 (24 bits).

set static-route default nexthop gateway address 192.168.80.1 on- This command sets the default gateway to 192.168.80.1 and enables the static route.

save config- This command saves the configuration changes to the appliance.

These commands are documented in theCheck Point appliance initial installationguide, which you can find in the web search results.

The other options are incorrect because they use invalid syntax or parameters for the commands. For example, option B usesadd static-routeinstead ofset static-route, option C uses0.0.0.0.instead of0.0.0.0, and option D usesadd static-route defaultinstead ofset static-route default.

Tom's changes will have been stored on the Management when he reconnects and he will not lose any of his work.

This is because SmartConsole has a feature called Concurrent Administration, which allows multiple administrators to work on the same Security Policy simultaneously, without blocking each other or creating conflicts. Concurrent Administration uses a locking mechanism to prevent multiple administrators from modifying the same rule or object at the same time. When an administrator clicks on a rule or an object, it becomes locked and a lock icon appears next to it.The lock icon shows the name of the administrator who is working on that rule or object, and prevents other administrators from editing it until it is unlocked12.

Concurrent Administration also has a feature called Session Persistence, which preserves the changes made by an administrator in case of a network failure or a SmartConsole crash. When an administrator reconnects to the Management Server after a network failure or a SmartConsole crash, they can resume their work from where they left off, without losing any changes.The changes are stored locally on the administrator's machine until they are published to the Management Server13.

Therefore, if Tom has connected to the R81 Management Server remotely using SmartConsole and is in the process of making some Rule Base changes, when he suddenly loses connectivity, his changes will not be lost. They will be stored locally on his machine and he can resume his work when he reconnects to the Management Server.

The key C is used to save the current CPView page in a filename format cpview_''cpview process ID''.cap'number of captures'. This is a feature of CPView that allows the user to capture the current page for later analysis or troubleshooting. The file is saved in the /var/log directory on the Security Gateway.

Reference:Check Point Resource Library, page 3.

Topic 4, Exam Pool D

After clicking ''Next'', the above configuration is supported by Active Directory integration which allows the Security Gateway to correlate Active Directory users and machines to IP addresses in a method that is completely transparent to the user. This is a feature of Identity Awareness that allows the Security Gateway to identify users and machines on the network and enforce security policies based on their identity.The administrator can configure Identity Awareness to use various methods for acquiring identity, including Active Directory integration, browser-based authentication, terminal servers, and transparent authentication1.

Reference:Check Point Resource Library, page 3.

The WebUI can be used to manage user accounts and assign privileges to users. It can also add users to your Gaia system and edit the home directory of the user.However, it cannot assign user rights to their home directory in the Security Management Server1.

Reference:Check Point Resource Library, page 3.

In the Check Point Security Management Architecture, both the Security Management Server and Security Gateway can store logs.The Security Management Server stores logs related to management activities, while the Security Gateway stores logs related to network traffic1.

Reference:Check Point Resource Library, page 3.