ExamGecko
Home / Checkpoint / 156-585 / List of questions
Ask Question

Checkpoint 156-585 Practice Test - Questions Answers, Page 2

Add to Whishlist

List of questions

Question 11

Report Export Collapse

When running a debug with fw monitor, which parameter will create a more verbose output?

-i
-i
-i
-i
-0
-0
-d
-d
Suggested answer: D
asked 16/09/2024
Emily Luijten
51 questions

Question 12

Report Export Collapse

What is connect about the Resource Advisor (RAD) service on the Security Gateways?

RAD has a kernel module that looks up the kernel cache, notifies client about hits and misses and forwards a-sync requests to RAD user space module which is responsible for online categorization
RAD has a kernel module that looks up the kernel cache, notifies client about hits and misses and forwards a-sync requests to RAD user space module which is responsible for online categorization
RAD is completely loaded as a kernel module that looks up URL in cache and if not found connects online for categorization There is no user space involvement in this process
RAD is completely loaded as a kernel module that looks up URL in cache and if not found connects online for categorization There is no user space involvement in this process
RAD functions completely in user space The Pattern Matter (PM) module of the CMI looks up for URLs in the cache and if not found, contact the RAD process in user space to do online categorization
RAD functions completely in user space The Pattern Matter (PM) module of the CMI looks up for URLs in the cache and if not found, contact the RAD process in user space to do online categorization
RAD is not a separate module, it is an integrated function of the 'fw1 kernel module and does all operations in the kernel space
RAD is not a separate module, it is an integrated function of the 'fw1 kernel module and does all operations in the kernel space
Suggested answer: C
asked 16/09/2024
Nickolas Abbas
55 questions

Question 13

Report Export Collapse

What are some measures you can take to prevent IPS false positives?

Exclude problematic services from being protected by IPS (sip, H 323, etc )
Exclude problematic services from being protected by IPS (sip, H 323, etc )
Use IPS only in Detect mode
Use IPS only in Detect mode
Use Recommended IPS profile
Use Recommended IPS profile
Capture packets. Update the IPS database, and Back up custom IPS files
Capture packets. Update the IPS database, and Back up custom IPS files
Suggested answer: A
asked 16/09/2024
Sukhpal Singh
38 questions

Question 14

Report Export Collapse

RAD is initiated when Application Control and URL Filtering blades are active on the Security Gateway What is the purpose of the following RAD configuration file SFWDIR/conf/rad_settings.C?

This file contains the location information tor Application Control and/or URL Filtering entitlements
This file contains the location information tor Application Control and/or URL Filtering entitlements
This file contains the information on how the Security Gateway reaches the Security Managers RAD service for Application Control and URL Filtering
This file contains the information on how the Security Gateway reaches the Security Managers RAD service for Application Control and URL Filtering
This file contains RAD proxy settings
This file contains RAD proxy settings
This file contains all the host name settings for the online application detection engine
This file contains all the host name settings for the online application detection engine
Suggested answer: C
asked 16/09/2024
Roman Flores
38 questions

Question 15

Report Export Collapse

What is the main SecureXL database for tracking the acceleration status of traffic?

cphwd_db
cphwd_db
cphwd_tmp1
cphwd_tmp1
cphwd_dev_conn_table
cphwd_dev_conn_table
cphwd_dev_identity_table
cphwd_dev_identity_table
Suggested answer: A
asked 16/09/2024
carlos salgado
45 questions

Question 16

Report Export Collapse

What is the buffer size set by the fw ctl zdebug command?

1 MB
1 MB
1 GB
1 GB
8MB
8MB
8GB
8GB
Suggested answer: A
asked 16/09/2024
Alajauan Adams
37 questions

Question 17

Report Export Collapse

What is the benefit of running "vpn debug trunc over "vpn debug on"?

"vpn debug trunc" purges ike.elg and vpnd elg and creates limestarnp while starting ike debug and vpn debug
"vpn debug trunc" purges ike.elg and vpnd elg and creates limestarnp while starting ike debug and vpn debug
"vpn debug trunc* truncates the capture hence the output contains minimal capture
"vpn debug trunc* truncates the capture hence the output contains minimal capture
"vpn debug trunc* provides verbose capture
"vpn debug trunc* provides verbose capture
No advantage one over the other
No advantage one over the other
Suggested answer: A
asked 16/09/2024
Mark David
49 questions

Question 18

Report Export Collapse

the difference in debugging a S2S or C2S (using Check Point VPN Client) VPN?

there is no difference
there is no difference
the C2S VPN uses a different VPN deamon and there a second VPN debug
the C2S VPN uses a different VPN deamon and there a second VPN debug
the C2S VPN can not be debugged as it uses different protocols for the key exchange
the C2S VPN can not be debugged as it uses different protocols for the key exchange
the C2S client uses Browser based SSL vpn and cant be debugged
the C2S client uses Browser based SSL vpn and cant be debugged
Suggested answer: D
asked 16/09/2024
Ray Savage
29 questions

Question 19

Report Export Collapse

Which of the following daemons is used for Threat Extraction?

scrubd
scrubd
extractd
extractd
tex
tex
tedex
tedex
Suggested answer: A
asked 16/09/2024
Suraj Porwal
43 questions

Question 20

Report Export Collapse

You are upgrading your NOC Firewall (on a Check Point Appliance) from R77 to R80 30 but you did not touch the security policy After the upgrade you can't connect to the new R80 30 SmartConsole of the upgraded Firewall anymore What is a possible reason for this?

new new console port is 19009 and a access rule ts missing
new new console port is 19009 and a access rule ts missing
the license became invalig and the firewall does not start anymore
the license became invalig and the firewall does not start anymore
the upgrade process changed the interfaces and IP adresses and you have to switch cables
the upgrade process changed the interfaces and IP adresses and you have to switch cables
the IPS System on the new R80.30 Version prohibits direct Smartconsole access to a standalone firewall
the IPS System on the new R80.30 Version prohibits direct Smartconsole access to a standalone firewall
Suggested answer: D
asked 16/09/2024
Scott Whitney
48 questions
Total 114 questions
Go to page: of 12

Related questions