Home / Checkpoint / 156-585

Checkpoint 156-585 Practice Test - Questions Answers, Page 7

Question list

List of questions

Question 61

(0)

If the cpsemd process of SmartEvent has crashed or is having trouble coming up. then it usually indicates that___________.

Question 62

(0)

Which command can be run in Expert mode lo verify the core dump settings?

Question 63

(0)

Jenna has to create a VPN tunnel to a CISCO ASA but has to set special property to renegotiate the Phase 2 tunnel after 10 MB of transferee1 dat a. This can not be configured in the smartconsole, so

Question 64

(0)

Troubleshooting issues with Mobile Access requires the following:

Question 65

(0)

What acceleration mode utlizes multi-core processing to assist with traffic processing?

Question 66

(0)

What is the simplest and most efficient way to check all dropped packets in real time?

Question 67

(0)

The Check Pom! Firewall Kernel is the core component of the Gaia operating system and an integral part of the traffic inspection process There are two procedures available for debugging the firewall

Question 68

(0)

If you run the command "fw monitor -e accept src=10.1.1.201 or src=172.21.101.10 or src=192.0.2.10;" from the cli sh What will be captured?

Question 69

(0)

When a User Mode process suddenly crashes it may create a core dump file. Which of the following information is available in the core dump and may be used to identify the root cause of the crash? i

Question 70

(0)

You have configured IPS Bypass Under Load function with additional kernel parameters ids_tolerance_no_stress=15 and ids_tolerance_stress-15 For configuration you used the *fw ctl set' command After

Related questions

The two procedures available for debugging in the firewall kernel are i fw ctl zdebug ii fw ctl debug/kdebug Choose the correct statement explaining the differences in the two

You need to run a kernel debug over a longer period of time as the problem occurs only once or twice a week. Therefore, you need to add a timestamp to the kernel debug and write the output to a file but you can’t afford to fill up all the remaining disk space and you only have 10 GB free for saving the debugs. What is the correct syntax for this?

What is the name of the VPN kernel process?

URL Filtering is an essential part of Web Security in the Gateway. For the Security Gateway to perform a URL lookup when a client makes a URL request, where is the sync-request forwarded from if a sync-request is required''

What command is used to find out which port Multi-Portal has assigned to the Mobile Access Portal?

You are running R80.XX on an open server and you see a high CPU utilization on your 12 CPU cores You now want to enable Hyperthreading to get more cores to gain some performance. What is the correct way to achieve this?

Which command is used to write a kernel debug to a file?

You are trying to establish a VPN tunnel between two Security Gateways but fail. What initial steps will you make to troubleshoot the issue

Check Point provides tools & commands to help you to identify issues about products and applications. Which Check Point command can help you to display status and statistics information for various Check Point products and applications?

Joey is configuring a site-to-site VPN with his business partner. On Joey’s site he has a Check Point R80.10 Gateway and his partner uses Cisco ASA 5540 as a gateway. Joey’s VPN domain on the Check Point Gateway object is manually configured with a group object that contains two network objects: VPN_Domain3 = 192.168.14.0/24 VPN_Domain4 = 192.168.15.0/24 Partner’s site ACL as viewed from “show run” access-list JOEY-VPN extended permit ip 172.26.251.0 255.255.255.0 192.168.14.0 255.255.255.0 access-list JOEY-VPN extended permit ip 172.26.251.0 255.255.255.0 192.168.15.0 255.255.255.0 When they try to establish VPN tunnel, it fails. What is the most likely cause of the failure given the information provided?

Question 61

If the cpsemd process of SmartEvent has crashed or is having trouble coming up. then it usually indicates that___________.

Postgres database ts down

Cpd daemon is unable to connect to the log server

The SmartEvent core on the Solr mdexer has been deleted

The logged in administrator does not have permissions to run SmartEvent

Show Answer Comment (0)

Question 62

Which command can be run in Expert mode lo verify the core dump settings?

grep cdm /config/db/coredump

grep cdm /config/db/initial

grep SFWDlR/config/db/initial

cat /etc/sysconfig/coredump/cdm conf

Show Answer Comment (0)

Jenna has to create a VPN tunnel to a CISCO ASA but has to set special property to renegotiate the Phase 2 tunnel after 10 MB of transferee1 dat a. This can not be configured in the smartconsole, so how can she modify this property?

using GUIDBEDIT located in same directory as Smartconsole on the Windows client

she need to install GUIDBEDIT which can be downloaded from the Usercenter

she need to run GUIDBEDIT from CLISH which opens a graphical window on the smartcenter

this cant be done anymore as GUIDBEDIT is not supported in R80 anymore

Show Answer Comment (0)

Question 64

Troubleshooting issues with Mobile Access requires the following:

Standard VPN debugs, packet captures, and debugs of cvpnd' process on Security Gateway

Standard VPN debugs and packet captures on Security Gateway, debugs of "cvpnd' process on Security Management

'ma_vpnd' process on Secunty Gateway

Debug logs of FWD captured with the command - 'fw debug fwd on TDERROR_MOBILE_ACCESS=5'

Show Answer Comment (0)

Question 65

What acceleration mode utlizes multi-core processing to assist with traffic processing?

CoreXL

SecureXL

HyperThreading

Traffic Warping

Show Answer Comment (0)

Question 66

What is the simplest and most efficient way to check all dropped packets in real time?

fw ctl zdebug * drop in expert mode

Smartlog

cat /dev/fwTlog in expert mode

tail -f SFWDIR/log/fw log |grep drop in expert mode

Show Answer Comment (0)

Question 67

The Check Pom! Firewall Kernel is the core component of the Gaia operating system and an integral part of the traffic inspection process There are two procedures available for debugging the firewall kernel Which procedure/command is used for troubleshooting packet drops and other kernel activites while using minimal resources (1 MB buffer)?

fw ctl zdebug

fw ctl debug/kdebug

fwk ctl debug

fw debug ctl

Show Answer Comment (0)

Question 68

If you run the command "fw monitor -e accept src=10.1.1.201 or src=172.21.101.10 or src=192.0.2.10;" from the cli sh What will be captured?

Packets from 10 1 1 201 going to 192.0 2.10

Packets destined to 172 21 101 10 from 10.1.1.101

Only packet going to 192.0.2.10

fw monitor only works in expert mode so no packets will be captured

Show Answer Comment (0)

Question 69

When a User Mode process suddenly crashes it may create a core dump file. Which of the following information is available in the core dump and may be used to identify the root cause of the crash? i Program Counter ii Stack Pointer ii. Memory management information iv Other Processor and OS flags / information

i, ii, lii and iv

i and n only

iii and iv only

D Only iii

Show Answer Comment (0)

Question 70

You have configured IPS Bypass Under Load function with additional kernel parameters ids_tolerance_no_stress=15 and ids_tolerance_stress-15 For configuration you used the *fw ctl set' command After reboot you noticed that these parameters returned to their default values What do you need to do to make this configuration work immediately and stay permanent?

Set these parameters again with “fw ctl set” and edit appropriate parameters in $FWDIR/boot/modules/ fwkern.conf

Use script $FWDIR/bin IpsSetBypass.sh to set these parameters

Set these parameters again with “fw ctl set” and save configuration with “save config”

Edit appropriate parameters in $FWDIR/boot/modules/fwkern.conf

Show Answer Comment (0)

Total 114 questions

5 6 7 8 9

Go to page: of 12