ExamGecko
Search Search Login
Home Home / Checkpoint / 156-315.81

Checkpoint 156-315.81 Practice Test - Questions Answers, Page 48

Question list
Search
Search
Open VPLUS File
Convert VPLUS to PDF

Related questions

True or False: In R81, more than one administrator can login to the Security Management Server with write permission at the same time.
The Firewall Administrator is required to create 100 new host objects with different IP addresses. What API command can he use in the script to achieve the requirement?
SecureXL is able to accelerate the Connection Rate using templates. Which attributes are used in the template to identify the connection?
SmartEvent Security Checkups can be run from the following Logs and Monitor activity:
By default, the R81 web API uses which content-type in its response?
By default, which port does the WebUI listen on?
What are the steps to configure the HTTPS Inspection Policy?
You find one of your cluster gateways showing ''Down'' when you run the ''cphaprob stat'' command. You then run the ''clusterXL_admin up'' on the down member but unfortunately the member continues to show down. What command do you run to determine the cause?
What is the limitation of employing Sticky Decision Function?
Due to high CPU workload on the Security Gateway, the security administrator decided to purchase a new multicore CPU to replace the existing single core CPU. After installation, is the administrator required to perform any additional tasks?

Question 471

Report
Export
Collapse

The ''MAC magic'' value must be modified under the following condition:

A.
There is more than one cluster connected to the same VLAN
A.
There is more than one cluster connected to the same VLAN
Answers
B.
A firewall cluster is configured to use Multicast for CCP traffic
B.
A firewall cluster is configured to use Multicast for CCP traffic
Answers
C.
There are more than two members in a firewall cluster
C.
There are more than two members in a firewall cluster
Answers
D.
A firewall cluster is configured to use Broadcast for CCP traffic
D.
A firewall cluster is configured to use Broadcast for CCP traffic
Answers
Suggested answer: A

Explanation:

Comprehensive and Detailed Explanation: The ''MAC magic'' value, also known as the ''Cluster Global ID'', is a mechanism that identifies different clusters on the same network segment. It is used to prevent MAC address conflicts and ensure proper load balancing among cluster members. The ''MAC magic'' value is a hexadecimal number that is appended to the virtual MAC address of the cluster interface. By default, the ''MAC magic'' value is set to 1 for all clusters, but it must be changed manually if there is more than one cluster connected to the same VLAN. Otherwise, the clusters will not be able to communicate with each other or with external hosts.

The ''MAC magic'' value does not need to be modified under the other conditions listed in the question. The firewall cluster can use either Broadcast or Multicast for CCP traffic without affecting the ''MAC magic'' value. The number of members in a firewall cluster also does not affect the ''MAC magic'' value, as long as they belong to the same cluster and have the same Cluster Global ID.

Question 472

Report
Export
Collapse

What is the correct description for the Dynamic Balancing / Split feature?

A.
Dynamic Balancing / Split dynamically change the number of SND's and firewall instances based on the current load. It is only available on Quantum Appliances and Open Server (not on Quantum Spark)
A.
Dynamic Balancing / Split dynamically change the number of SND's and firewall instances based on the current load. It is only available on Quantum Appliances and Open Server (not on Quantum Spark)
Answers
B.
Dynamic Balancing / Split dynamically distribute the traffic from one network interface to multiple SND's. The interface must support Multi-Queue. It is only available on Quantum Appliances and Open Server (not on Quantum Spark)
B.
Dynamic Balancing / Split dynamically distribute the traffic from one network interface to multiple SND's. The interface must support Multi-Queue. It is only available on Quantum Appliances and Open Server (not on Quantum Spark)
Answers
C.
Dynamic Balancing / Split dynamically distribute the traffic from one network interface to multiple SND's. The interface must support Multi-Queue. It is only available on Quantum Appliances (not on Quantum Spark or Open Server)
C.
Dynamic Balancing / Split dynamically distribute the traffic from one network interface to multiple SND's. The interface must support Multi-Queue. It is only available on Quantum Appliances (not on Quantum Spark or Open Server)
Answers
D.
Dynamic Balancing / Split dynamically change the number of SND's and firewall instances based on the current load. It is only available on Quantum Appliances (not on Quantum Spark or Open Server)
D.
Dynamic Balancing / Split dynamically change the number of SND's and firewall instances based on the current load. It is only available on Quantum Appliances (not on Quantum Spark or Open Server)
Answers
Suggested answer: D

Explanation:

The correct description for the Dynamic Balancing / Split feature is:

Dynamic Balancing / Split dynamically change the number of SND's and firewall instances based on the current load.

It is only available on Quantum Appliances (not on Quantum Spark or Open Server)

The Dynamic Balancing / Split feature is a performance-enhancing daemon that balances the load between CoreXL SNDs and CoreXL Firewalls. It monitors the average CPU utilization of CoreXL Firewall and SND instances and automatically increases or decreases the number of CoreXL Firewall instances.The Dynamic Balancing Daemon (dsd) has three stages in each iteration: Examine the current CPU utilization, Calculate the optimal split, and Apply the new split1.

The Dynamic Balancing / Split feature is supported on Check Point Appliances, such as Quantum Appliances, Quantum Maestro, Quantum Security Gateways, and Quantum LightSpeed Appliances in KPPAK mode2. It is not supported on Quantum Spark appliances, which are designed for small and medium businesses. It is also not supported on Open Server platforms, which are general-purpose servers that run Check Point software on top of third-party operating systems.

Question 473

Report
Export
Collapse

Which command shows the current Security Gateway Firewall chain?

A.
show current chain
A.
show current chain
Answers
B.
show firewall chain
B.
show firewall chain
Answers
C.
fw ctl chain
C.
fw ctl chain
Answers
D.
fw ctl firewall-chain
D.
fw ctl firewall-chain
Answers
Suggested answer: C

Question 474

Report
Export
Collapse

You want to allow your Mobile Access Users to connect to an internal file share. Adding the Mobile Application 'File Share' to your Access Control Policy in the SmartConsole didn't work. You will be only allowed to select Services for the 'Service & Application' column How to fix it?

A.
A Quantum Spark Appliance is selected as Installation Target for the policy packet.
A.
A Quantum Spark Appliance is selected as Installation Target for the policy packet.
Answers
B.
The Mobile Access Blade is not enabled for the Access Control Layer of the policy.
B.
The Mobile Access Blade is not enabled for the Access Control Layer of the policy.
Answers
C.
The Mobile Access Policy Source under Gateway properties Is set to Legacy Policy and not to Unified Access Policy.
C.
The Mobile Access Policy Source under Gateway properties Is set to Legacy Policy and not to Unified Access Policy.
Answers
D.
The Mobile Access Blade is not enabled under Gateway properties.
D.
The Mobile Access Blade is not enabled under Gateway properties.
Answers
Suggested answer: C

Question 475

Report
Export
Collapse

What are not possible commands to acquire the lock in order to make changes in Clish or Web GUI?

A.
set config-lock on override
A.
set config-lock on override
Answers
B.
Click the Lock icon in the WebUI
B.
Click the Lock icon in the WebUI
Answers
C.
'set rbac rw = 1''
C.
'set rbac rw = 1''
Answers
D.
lock database override
D.
lock database override
Answers
Suggested answer: C

Question 476

Report
Export
Collapse

When detected, an event can activate an Automatic Reaction. The SmartEvent administrator can create and configure one Automatic Reaction, or many, according to the needs of the system. Which of the following statement is false and NOT part of possible automatic reactions:

A.
Syslog
A.
Syslog
Answers
B.
SNMPTrap
B.
SNMPTrap
Answers
C.
Block Source
C.
Block Source
Answers
D.
Mail
D.
Mail
Answers
Suggested answer: B

Question 477

Report
Export
Collapse

What is the recommended way to have a redundant Sync connection between the cluster nodes?

A.
In the SmartConsole / Gateways & Servers -> select Cluster Properties / Network Management and define two Sync interfaces per node. Connect both Sync interfaces without using a switch.
A.
In the SmartConsole / Gateways & Servers -> select Cluster Properties / Network Management and define two Sync interfaces per node. Connect both Sync interfaces without using a switch.
Answers
B.
Use a group of bonded interfaces. In the SmartConsole / Gateways & Servers -> select Cluster Properties / Network Management and define a Virtual IP for the Sync interface.
B.
Use a group of bonded interfaces. In the SmartConsole / Gateways & Servers -> select Cluster Properties / Network Management and define a Virtual IP for the Sync interface.
Answers
C.
In the SmartConsole / Gateways & Servers -> select Cluster Properties / Network Management and define two Sync interfaces per node. Use two different Switches to connect both Sync interfaces.
C.
In the SmartConsole / Gateways & Servers -> select Cluster Properties / Network Management and define two Sync interfaces per node. Use two different Switches to connect both Sync interfaces.
Answers
D.
Use a group of bonded interfaces connected to different switches. Define a dedicated sync interface, only one interface per node using the SmartConsole / Gateways & Servers -> select Cluster Properties / Network Management.
D.
Use a group of bonded interfaces connected to different switches. Define a dedicated sync interface, only one interface per node using the SmartConsole / Gateways & Servers -> select Cluster Properties / Network Management.
Answers
Suggested answer: D

Explanation:

The recommended way to have a redundant Sync connection between the cluster nodes is to use a group of bonded interfaces connected to different switches. In the SmartConsole / Gateways & Servers -> select Cluster Properties / Network Management, you should define a dedicated sync interface, only one interface per node.

Question 478

Report
Export
Collapse

There are multiple types of licenses for the various VPN components and types. License type related to management and functioning of Remote Access VPNs are - which of the following license requirement statement is NOT true:

A.
MobileAccessLicense This license is required on the Security Gateway for the following Remote Access solutions
A.
MobileAccessLicense This license is required on the Security Gateway for the following Remote Access solutions
Answers
B.
EndpointPolicyManagementLicense The Endpoint Security Suite includes blades other than the Remote Access VPN, hence this license is required to manage the suite
B.
EndpointPolicyManagementLicense The Endpoint Security Suite includes blades other than the Remote Access VPN, hence this license is required to manage the suite
Answers
C.
EndpointContainerLicense The Endpoint Software Blade Licenses does not require an Endpoint Container License as the base
C.
EndpointContainerLicense The Endpoint Software Blade Licenses does not require an Endpoint Container License as the base
Answers
D.
IPSecVPNLicense * This license is installed on the VPN Gateway and is a basic requirement for a Remote Access VPN solution
D.
IPSecVPNLicense * This license is installed on the VPN Gateway and is a basic requirement for a Remote Access VPN solution
Answers
Suggested answer: C

Explanation:

The Endpoint Policy Management License is required for managing the Endpoint Security Suite, which includes blades such as the Remote Access VPN. The IPSec VPN License is installed on the VPN Gateway and is a basic requirement for a Remote Access VPN solution. The MobileAccessLicense is required on the Security Gateway for the following Remote Access solutions.

Question 479

Report
Export
Collapse

What is false regarding a Management HA environment?

A.
Only one Management Server should be active, while any others be in standby mode
A.
Only one Management Server should be active, while any others be in standby mode
Answers
B.
It is not necessary to establish SIC between the primary and secondary management server, since the latter gets the exact same copy of the management database from the prior.
B.
It is not necessary to establish SIC between the primary and secondary management server, since the latter gets the exact same copy of the management database from the prior.
Answers
C.
SmartConsole can connect to any management server in Readonly mode.
C.
SmartConsole can connect to any management server in Readonly mode.
Answers
D.
Synchronization will occur automatically with each Publish event if the Standby servers are available.
D.
Synchronization will occur automatically with each Publish event if the Standby servers are available.
Answers
Suggested answer: B

Explanation:

It is false that it is not necessary to establish SIC between the primary and secondary management server, since the latter gets the exact same copy of the management database from the prior. In fact, SIC is required between the primary and secondary management server for Management HA to work properly. SIC ensures secure communication between the management servers and allows the standby server to receive updates from the active server. Without SIC, the standby server will not be able to synchronize with the active server and will not be ready to take over in case of a failover.

Solved: Management HA - Check Point CheckMates, section ''Synchronizing Active and Standby Servers''

CheckPoint Management Server R81 HA Configuration | Udemy, section ''How to set it up in the PNET lab environment''

Check Point R81, section ''Management High Availability''

Question 480

Report
Export
Collapse

Which Check Point process provides logging services, such as forwarding logs from Gateway to Log Server, providing Log Export API (LEA) & Event Logging API (EL-A) services.

A.
DASSERVICE
A.
DASSERVICE
Answers
B.
FWD
B.
FWD
Answers
C.
CPVIEWD
C.
CPVIEWD
Answers
D.
CPD
D.
CPD
Answers
Suggested answer: B

Explanation:

The FWD process provides logging services, such as forwarding logs from Gateway to Log Server, providing Log Export API (LEA) and Event Logging API (EL-A) services. The FWD process is responsible for sending logs from the Security Gateway to the Security Management Server or Log Server, and for fetching logs from the Security Management Server or Log Server to SmartConsole. The FWD process also handles the communication with external logging applications that use the LEA or EL-A protocols.

FWD process does not work after reboot - Check Point CheckMates, section ''FWD process does not work after reboot''

Check Point R81, section ''Logging and Monitoring''

CoreXL Dynamic Dispatcher - Check Point Software, section ''Example of output''

Total 626 questions
Go to page: of 63
ExamGecko

Copyright @2023 ExamGecko | All right reserved

Mail us: [email protected]
About us
Contact us
Twitter X
Facebook
Medium
Convert VPLUS to PDF
Open VPLUS files Easily and Quickly
Privacy Policy
Disclaimer
Terms