ExamGecko
Search Search Login
Home Home / Checkpoint / 156-586

Checkpoint 156-586 Practice Test - Questions Answers, Page 6

Question list
Search
Search
Open VPLUS File
Convert VPLUS to PDF

Related questions

Your users have some issues connecting with Mobile Access VPN to your gateway. How can you debug the tunnel establishment?
When viewing data for CPMI objects in the Postgres database, what table column should be selected to query for the object instance?
Your users are having trouble opening a Web page and you need to troubleshoot it. You open the Smart Console, and you get the following message when you navigate to the Logs and Monitor 'SmartLog is not active or Failed to parse results from server'. What is the first thing you can try to resolve it?
Where do you enable log indexing on the SMS?
What information does the doctor-log script supply?
Captive Portal, PDP and PEP run in what space?
Which of the following inputs is suitable for debugging HTTPS inspection issues?
An administrator receives reports about issues with log indexing and text searching regarding an existing Management Server. In trying to find a solution she wants to check if the process responsible for this feature is running correctly. What is true about the related process?
What is the best way to resolve an issue caused by a frozen process?
You do not see logs in the SMS. When you login on the SMS shell and run cpwd_admin list you notice that the RFL process is with status T. What command can you run to try to resolve it?

Question 51

Report
Export
Collapse

Captive Portal, PDP and PEP run in what space?

A.
Kernel
A.
Kernel
Answers
B.
User
B.
User
Answers
C.
CPM
C.
CPM
Answers
D.
FWD
D.
FWD
Answers
Suggested answer: B

Question 52

Report
Export
Collapse

Which Daemon should be debugged for HTTPS Inspection related issues?

A.
FWD
A.
FWD
Answers
B.
WSTLSD
B.
WSTLSD
Answers
C.
HTTPD
C.
HTTPD
Answers
D.
VPND
D.
VPND
Answers
Suggested answer: B

Question 53

Report
Export
Collapse

The two procedures available for debugging in the firewall kernel are

i. fw ctl zdebug

ii. fw ctl debug/kdebug

Choose the correct statement explaining the differences in the two

A.
(i) is used to debug only issues related to dropping of traffic, however (ii) can be used for any firewall issue including NATing, clustering etc.
A.
(i) is used to debug only issues related to dropping of traffic, however (ii) can be used for any firewall issue including NATing, clustering etc.
Answers
B.
(i) is used to debug the access control policy only, however (ii) can be used to debug a unified policy
B.
(i) is used to debug the access control policy only, however (ii) can be used to debug a unified policy
Answers
C.
(i) is used on a Security Gateway, whereas (ii) is used on a Security Management Server
C.
(i) is used on a Security Gateway, whereas (ii) is used on a Security Management Server
Answers
D.
(i) is used for general debugging, has a small buffer and is a quick way to set kernel debug flags to getan output via command line whereas (ii) is useful when there is a need for detailed debugging and requires additional steps to set the buffer and get an output via command line
D.
(i) is used for general debugging, has a small buffer and is a quick way to set kernel debug flags to getan output via command line whereas (ii) is useful when there is a need for detailed debugging and requires additional steps to set the buffer and get an output via command line
Answers
Suggested answer: D

Question 54

Report
Export
Collapse

In Check Point's Packet Processing Infrastructure, what is the role of Observers?

A.
They store Rule Base matching state related information
A.
They store Rule Base matching state related information
Answers
B.
Observers monitor the state of Check Point gateways and report it to the security manager
B.
Observers monitor the state of Check Point gateways and report it to the security manager
Answers
C.
Observers attach object IDs to traffic
C.
Observers attach object IDs to traffic
Answers
D.
Observers decide whether or not to publish a CLOB to the Security Policy
D.
Observers decide whether or not to publish a CLOB to the Security Policy
Answers
Suggested answer: C

Question 55

Report
Export
Collapse

You need to run a kernel debug over a longer period of time as the problem occurs only once or twice a week. Therefore, you need to add a timestamp to the kernel debug and write the output to a file but you can't afford to fill up all the remaining disk space and you only have 10 GB free for saving the debugs. What is the correct syntax for this?

A.
fw ctl debug -T -f -m 10 -s 1000000 -o debugfilename
A.
fw ctl debug -T -f -m 10 -s 1000000 -o debugfilename
Answers
B.
fw ctl kdebug -T -f -m 10 -s 1000000 > debugfilename
B.
fw ctl kdebug -T -f -m 10 -s 1000000 > debugfilename
Answers
C.
fw ctl kdebug -T -f -m 10 -s 1000000 -o debugfilename
C.
fw ctl kdebug -T -f -m 10 -s 1000000 -o debugfilename
Answers
D.
fw ctl kdebug-T -m 10 -s 1000000 -o debugfilename
D.
fw ctl kdebug-T -m 10 -s 1000000 -o debugfilename
Answers
Suggested answer: C

Question 56

Report
Export
Collapse

How can you start debug of the Unified Policy with all possible flags turned on?

A.
fw ctl debug -m UP all
A.
fw ctl debug -m UP all
Answers
B.
fw ctl debug -m UP
B.
fw ctl debug -m UP
Answers
C.
fw ctl debug -m fw + UP
C.
fw ctl debug -m fw + UP
Answers
D.
fw ctl debuq -m UnifiedPolicv all
D.
fw ctl debuq -m UnifiedPolicv all
Answers
Suggested answer: A

Question 57

Report
Export
Collapse

What is the kernel process for Content Awareness that collects the data from the contexts received from the CMI and decides if the file is matched by a data type?

A.
cntawmod
A.
cntawmod
Answers
B.
dlpda
B.
dlpda
Most voted
Answers (1)
Most voted
C.
dlpu
C.
dlpu
Answers
D.
cntmgr
D.
cntmgr
Answers
Suggested answer: A

Question 58

Report
Export
Collapse

When dealing with monolithic operating systems such as Gaia, where are system calls initiated from to achieve a required system level function?

A.
Kernel Mode
A.
Kernel Mode
Answers
B.
User Mode
B.
User Mode
Answers
C.
Slow Path
C.
Slow Path
Answers
D.
Medium Path
D.
Medium Path
Answers
Suggested answer: B

Question 59

Report
Export
Collapse

What cli command is run on the GW to verify communication to the Identity Collector?

A.
fwd connected
A.
fwd connected
Answers
B.
pdp connections idc
B.
pdp connections idc
Answers
C.
pep connections idc
C.
pep connections idc
Answers
D.
show idc connections
D.
show idc connections
Answers
Suggested answer: B

Question 60

Report
Export
Collapse

You receive reports that Users cannot browse internet sites. You are using identity awareness with AD Query and Identity Collector in addition you have the Browser Based Authentication Enabled. What command can be used to debug the problem?

A.
on the gateway: ad debug on
A.
on the gateway: ad debug on
Answers
B.
on the gateway: ad query debug on
B.
on the gateway: ad query debug on
Answers
C.
on the management: ad query debug extended
C.
on the management: ad query debug extended
Answers
D.
on the gateway: pdp debug nac extended
D.
on the gateway: pdp debug nac extended
Answers
Suggested answer: D
Total 75 questions
Go to page: of 8
ExamGecko

Copyright @2023 ExamGecko | All right reserved

Mail us: [email protected]
About us
Contact us
Twitter X
Facebook
Medium
Convert VPLUS to PDF
Open VPLUS files Easily and Quickly
Privacy Policy
Disclaimer
Terms