Home

Home / Checkpoint / 156-315.81

Question list

List of questions

Question 1

(0)

To fully enable Dynamic Dispatcher with Firewall Priority Queues on a Security Gateway, run the following command in Expert mode then reboot:

Question 2

(0)

Advanced Security Checkups can be easily conducted within:

Question 3

(0)

What is the limitation of employing Sticky Decision Function?

Question 4

(0)

How many images are included with Check Point TE appliance in Recommended Mode?

Question 5

(0)

You have existing dbedit scripts from R77. Can you use them with R81.20?

Question 6

(0)

Which Remote Access Client does not provide an Office-Mode Address?

Question 7

(0)

What is the command to see cluster status in cli expert mode?

Question 8

(0)

As a valid Mobile Access Method, what feature provides Capsule Connect/VPN?

Question 9

(0)

You find one of your cluster gateways showing ''Down'' when you run the ''cphaprob stat'' command. You then run the ''clusterXL_admin up'' on the down member but unfortunately the member continues t

Question 10

(0)

In SmartEvent, what are the different types of automatic reactions that the administrator can configure?

Open VPLUS File

Convert VPLUS to PDF

Related questions

True or False: In R81, more than one administrator can login to the Security Management Server with write permission at the same time.

The Firewall Administrator is required to create 100 new host objects with different IP addresses. What API command can he use in the script to achieve the requirement?

SecureXL is able to accelerate the Connection Rate using templates. Which attributes are used in the template to identify the connection?

SmartEvent Security Checkups can be run from the following Logs and Monitor activity:

By default, the R81 web API uses which content-type in its response?

What are the steps to configure the HTTPS Inspection Policy?

By default, which port does the WebUI listen on?

When simulating a problem on ClusterXL cluster with cphaprob --d STOP -s problem -t 0 register, to initiate a failover on an active cluster member, what command allows you remove the problematic state?

Which command would disable a Cluster Member permanently?

You find one of your cluster gateways showing ''Down'' when you run the ''cphaprob stat'' command. You then run the ''clusterXL_admin up'' on the down member but unfortunately the member continues to show down. What command do you run to determine the cause?

Question 165 - 156-315.81 discussion

Report

From SecureXL perspective, what are the tree paths of traffic flow:

A.

Initial Path; Medium Path; Accelerated Path

B.

Layer Path; Blade Path; Rule Path

C.

Firewall Path; Accept Path; Drop Path

D.

Firewall Path; Accelerated Path; Medium Path

Suggested answer: D

Explanation:

SecureXL is a technology that improves the performance of Security Gateway by offloading the processing of some packets from the Firewall kernel to the SecureXL device driver1.SecureXL can handle packets in three different paths, depending on the type and state of the packet2:

Firewall Path: This is the slowest path, where packets are processed by the Firewall kernel and all the inspection blades. This path is used for packets that require full inspection, such as the first packet of a connection, packets that match a rule with a UTM blade, or packets that are not eligible for acceleration.

Accelerated Path: This is the fastest path, where packets are processed by the SecureXL device driver and bypass the Firewall kernel. This path is used for packets that belong to an established connection that is marked for acceleration, and do not require any further inspection by the Firewall or other blades.

Medium Path: This is a hybrid path, where packets are processed by both the SecureXL device driver and the Firewall kernel, but skip some inspection steps. This path is used for packets that belong to an established connection that is not marked for acceleration, but do not require full inspection by all the blades.

The other options are not correct because:

A) Initial Path; Medium Path; Accelerated Path: There is no such thing as Initial Path in SecureXL terminology. The initial packet of a connection is always handled by the Firewall Path.

B) Layer Path; Blade Path; Rule Path: These are not paths of traffic flow, but components of the unified policy in R80 and above versions.The Layer Path refers to the order of layers in the policy, the Blade Path refers to the order of blades within a layer, and the Rule Path refers to the order of rules within a blade3.

C) Firewall Path; Accept Path; Drop Path: These are not paths of traffic flow, but possible actions that the Firewall can take on a packet. The Firewall Path is one of the paths of traffic flow, but the Accept Path and Drop Path are not.The Accept Path means that the packet is allowed to pass through the Firewall, and the Drop Path means that the packet is blocked by the Firewall4.

Show Answer

asked 16/09/2024

Adekunle Fodeke

30 questions

User

Your answer: A B C D

0 comments

Sorted by

Leave a comment first