156-315.81.20 Dumps

156-315.81.20 Braindumps

156-315.81.20 Real Questions

156-315.81.20 Practice Test

156-315.81.20 Actual Questions


killexams.com


Checkpoint


156-315.81.20


Certified Security Expert - R81.20 (CCSE)


https://killexams.com/pass4sure/exam-detail/156-315.81.20


Question: 78


R81.10 management server can manage gateways with which versions installed?


  1. Versions R77 and higher

  2. Versions R76 and higher

  3. Versions R75.20 and higher

  4. Versions R75 and higher


Answer: C Question: 79

Which command can you use to verify the number of active concurrent connections?


  1. fw conn all

  2. fw ctl pstat

  3. show all connections

  4. show connections


Answer: B Question: 80

Which of the following statements is TRUE about R81 management plug-ins?


  1. The plug-in is a package installed on the Security Gateway.

  2. Installing a management plug-in requires a Snapshot, just like any upgrade process.

  3. A management plug-in interacts with a Security Management Server to provide new features and support for new products.

  4. Using a plug-in offers full central management only if special licensing is applied to specific features of the plug- in.


Answer: C Question: 81

How can SmartView application accessed?


  1. http://<Security Management IP Address>/smartview

  2. http://<Security Management IP Address>:4434/smartview/

  3. https://<Security Management IP Address>/smartview/

  4. https://<Security Management host name>:4434/smartview/

What command verifies that the API server is responding?


  1. api stat

  2. api status

  3. show api_status

  4. app_get_status


Answer: B Question: 83

Where you can see and search records of action done by R81 SmartConsole administrators?


  1. In SmartView Tracker, open active log

  2. In the Logs & Monitor view, select âOpen Audit Log Viewâ

  3. In SmartAuditLog View

  4. In Smartlog, all logs


Answer: B Question: 84

Fill in the blank: The R81 utility fw monitor is used to troubleshoot .


  1. User data base corruption

  2. LDAP conflicts

  3. Traffic issues

  4. Phase two key negotiations


Answer: C


Explanation:


Check Pointâs FW Monitor is a powerful built-in tool for capturing network traffic at the packet level. The FW Monitor utility captures network packets at multiple capture points along the FireWall inspection chains. These captured packets can be inspected later using the WireShark.


Question: 85


The Firewall kernel is replicated multiple times, therefore:


  1. The Firewall kernel only touches the packet if the connection is accelerated

  2. The Firewall can run different policies per core

  3. The Firewall kernel is replicated only with new connections and deletes itself once the connection times out

  4. The Firewall can run the same policy on all cores.

On a Security Gateway with CoreXL enabled, the Firewall kernel is replicated multiple times. Each replicated copy, or instance, runs on one processing core. These instances handle traffic concurrently, and each instance is a complete and independent inspection kernel. When CoreXL is enabled, all the kernel instances in the Security Gateway process traffic through the same interfaces and apply the same security policy.


Question: 86


Selecting an event displays its configurable properties in the Detail pane and a description of the event in the Description pane.


Which is NOT an option to adjust or configure?


  1. Severity

  2. Automatic reactions

  3. Policy

  4. Threshold


Answer: C Question: 87

To fully enable Dynamic Dispatcher with Firewall Priority Queues on a Security Gateway, run the following command in Expert mode then reboot:


  1. fw ctl multik set_mode 1

  2. fw ctl Dynamic_Priority_Queue on

  3. fw ctl Dynamic_Priority_Queue enable

  4. fw ctl multik set_mode 9


Answer: D Question: 88

Advanced Security Checkups can be easily conducted within:


  1. Reports

  2. Advanced

  3. Checkups

  4. Views

  5. Summary


Answer: A Question: 89

What is the limitation of employing Sticky Decision Function?


  1. With SDF enabled, the involved VPN Gateways only supports IKEv1

  2. Acceleration technologies, such as SecureXL and CoreXL are disabled when activating SDF

  3. With SDF enabled, only ClusterXL in legacy mode is supported

  4. With SDF enabled, you can only have three Sync interfaces at most

Answer: B Question: 90

Which Mobile Access Application allows a secure container on Mobile devices to give users access to internal website, file share and emails?


  1. Check Point Remote User

  2. Check Point Capsule Workspace

  3. Check Point Mobile Web Portal

  4. Check Point Capsule Remote


Answer: C Question: 91

Which of the following process pulls application monitoring status?


  1. fwd

  2. fwm

  3. cpwd

  4. cpd


Answer: D Question: 92

To fully enable Dynamic Dispatcher on a Security Gateway:


  1. run fw ctl multik set_mode 9 in Expert mode and then Reboot.

  2. Using cpconfig, update the Dynamic Dispatcher value to âfullâ under the CoreXL menu.

  3. Edit/proc/interrupts to include multik set_mode 1 at the bottom of the file, save, and reboot.

  4. run fw multik set_mode 1 in Expert mode and then reboot.


Answer: A Question: 93

Session unique identifiers are passed to the web api using which http header option?


  1. X-chkp-sid

  2. Accept-Charset

  3. Proxy-Authorization

  4. Application


Answer: C Question: 94

Which command shows actual allowed connections in state table?

  1. fw tab Ct StateTable

  2. fw tab Ct connections

  3. fw tab Ct connection

  4. fw tab connections


Answer: B Question: 95

What SmartEvent component creates events?


  1. Consolidation Policy

  2. Correlation Unit

  3. SmartEvent Policy

  4. SmartEvent GUI


Answer: B Question: 96

Which command collects diagnostic data for analyzing customer setup remotely?


  1. cpinfo

  2. migrate export

  3. sysinfo

  4. cpview


Answer: A


Explanation:


CPInfo is an auto-updatable utility that collects diagnostics data on a customer's machine at the time of execution and uploads it to Check Point servers (it replaces the standalone cp_uploader utility for uploading files to Check Point servers).


The CPInfo output file allows analyzing customer setups from a remote location. Check Point support engineers can open the CPInfo file in a demo mode, while viewing actual customer Security Policies and Objects. This allows the in- depth analysis of customer's configuration and environment settings.