ExamGecko
Search Search Login
Home Home / Checkpoint / 156-215.81
Question list
Search
Search
Open VPLUS File
Convert VPLUS to PDF

Related questions

What needs to be configured if the NAT property 'Translate destination on client side' is not enabled in Global properties?
Which is a suitable command to check whether Drop Templates are activated or not?
Which Check Point software blade provides Application Security and identity control?
How are the backups stored in Check Point appliances?
Fill in the blank: The position of an implied rule is manipulated in the __________________ window.
Which of the following is true about Stateful Inspection?
Fill in the blank: With the User Directory Software Blade, you can create user definitions on a(n) ___________ Server.
What is the main difference between Threat Extraction and Threat Emulation?
Which of the following is NOT a method used by Identity Awareness for acquiring identity?
When should you generate new licenses?

Question 385 - 156-215.81 discussion

Report
Export

You had setup the VPN Community NPN-Stores' with 3 gateways. There are some issues with one remote gateway(l .1.1.1) and an your local gateway. What will be the best log filter to see only the IKE Phase 2 agreed networks for both gateways.

A.
action:''Key Install' AND 1.1.1.1 AND Quick Mode
Answers
A.
action:''Key Install' AND 1.1.1.1 AND Quick Mode
B.
Blade:''VPN''AND VPN-Stores AND Main Mode
Answers
B.
Blade:''VPN''AND VPN-Stores AND Main Mode
C.
action:''Key Install'' AND 1.1.1.1 AND Main Mode
Answers
C.
action:''Key Install'' AND 1.1.1.1 AND Main Mode
D.
Blade:''VPN''AND VPN-Stores AND Quick Mode
Answers
D.
Blade:''VPN''AND VPN-Stores AND Quick Mode
Suggested answer: A

Explanation:

This log filter will show only the logs that have the action of ''Key Install'', which means that the Security Gateway installed a new encryption key for the VPN tunnel1. It will also show only the logs that have the IP address of 1.1.1.1, which is the remote gateway that has some issues.Finally, it will show only the logs that have the Quick Mode, which is the IKE Phase 2 negotiation that establishes the agreed networks for both gateways2.

The other log filters are not correct because they either include the Main Mode, which is the IKE Phase 1 negotiation that establishes the secure channel between the gateways2, or they do not specify the IP address of the remote gateway.

Logging and Monitoring R81.20 Administration Guide

Remote Access VPN R81.20 Administration Guide

Remote Access VPN R81 Administration Guide

Show Answer
asked 16/09/2024
Epitacio Neto
30 questions
PreviousPreviousNextNext
User
Your answer:
0 comments
Sorted by

Leave a comment first

ExamGecko

Copyright @2023 ExamGecko | All right reserved

Mail us: [email protected]
About us
Contact us
Twitter X
Facebook
Medium
Convert VPLUS to PDF
Open VPLUS files Easily and Quickly
Privacy Policy
Disclaimer
Terms