ExamGecko
Search Search Login
Home Home / Checkpoint / 156-315.81
Question list
Search
Search
Open VPLUS File
Convert VPLUS to PDF

Related questions

True or False: In R81, more than one administrator can login to the Security Management Server with write permission at the same time.
The Firewall Administrator is required to create 100 new host objects with different IP addresses. What API command can he use in the script to achieve the requirement?
SecureXL is able to accelerate the Connection Rate using templates. Which attributes are used in the template to identify the connection?
SmartEvent Security Checkups can be run from the following Logs and Monitor activity:
By default, the R81 web API uses which content-type in its response?
What is the command used to activated Multi-Version Cluster mode?
By default, which port does the WebUI listen on?
What are the steps to configure the HTTPS Inspection Policy?
You find one of your cluster gateways showing ''Down'' when you run the ''cphaprob stat'' command. You then run the ''clusterXL_admin up'' on the down member but unfortunately the member continues to show down. What command do you run to determine the cause?
What is the limitation of employing Sticky Decision Function?

Question 491 - 156-315.81 discussion

Report
Export

A user complains that some Internet resources are not available. The Administrator is having issues seeing it packets are being dropped at the firewall (not seeing drops in logs). What is the solution to troubleshoot the issue?

A.
run fw unloadlocal' on the relevant gateway and check the ping again
Answers
A.
run fw unloadlocal' on the relevant gateway and check the ping again
B.
run 'cpstop' on the relevant gateway and check the ping again
Answers
B.
run 'cpstop' on the relevant gateway and check the ping again
C.
run ''fw log' on the relevant gateway
Answers
C.
run ''fw log' on the relevant gateway
D.
run ''fw ctl zdebug drop' on the relevant gateway
Answers
D.
run ''fw ctl zdebug drop' on the relevant gateway
Suggested answer: D

Explanation:

The solution to troubleshoot the issue of some Internet resources being unavailable is to runfw ctl zdebug dropon the relevant gateway1.This command lists all dropped packets in real time and explains the reasons for the drop2.It is a powerful tool that can help diagnose connectivity problems and firewall policy issues3.To use this command, you need to access the gateway in expert mode and runfw ctl zdebug + drop2.You can also filter the output by using grep with an IP address or a keyword, for example:fw ctl zdebug + drop | grep 10.10.10.10orfw ctl zdebug + drop | grep SYN3.This command is a wrapper for the full debugs, and it will run the debug commands for you and will allow you to run debug from one debug module only4.By default, it will use a small debug buffer but if you wish, you can provide the-bufoption to use your own size4.To stop the command, press Ctrl+C and then runfw ctl debug 0to reset the debug state3.

Note: Running this command may affect the performance of the firewall, so use it with caution and only when necessary3.

Reference:Solved: is it possible /supported to run fw ctl zdebug on ... - Check ...,How to use the fw ctl zdebug command to view drops on the Security Gateway,Troubleshooting dropped packets in Checkpoint using zdebug,''fw ctl zdebug'' - Helpful Command Combinations - Check Point CheckMates

Show Answer
asked 16/09/2024
Leandra Felipe
38 questions
PreviousPreviousNextNext
User
Your answer:
0 comments
Sorted by

Leave a comment first

ExamGecko

Copyright @2023 ExamGecko | All right reserved

Mail us: [email protected]
About us
Contact us
Twitter X
Facebook
Medium
Convert VPLUS to PDF
Open VPLUS files Easily and Quickly
Privacy Policy
Disclaimer
Terms