Q1. - (Topic 1)
You believe Phase 2 negotiations are failing while you are attempting to configure a site-to-site VPN with one of your firm's business partners. Which SmartConsole application should you use to confirm your suspicions?
A. SmartDashboard
B. SmartView Tracker
C. SmartUpdate
D. SmartView Status
Answer: B
Q2. - (Topic 3)
Which R77 GUI would you use to see the number of packets accepted since the last policy install?
A. SmartView Monitor
B. SmartView Status
C. SmartView Tracker
D. SmartDashboard
Answer: A
Q3. - (Topic 3)
In SmartView Tracker, which rule shows when a packet is dropped due to anti-spoofing?
A. Rule 0
B. Blank field under Rule Number
C. Cleanup Rule
D. Rule 1
Answer: A
Q4. - (Topic 1)
What are you required to do before running the command upgrade_export?
A. Run a cpstop on the Security Management Server.
B. Run a cpstop on the Security Gateway.
C. Close all GUI clients.
D. Run cpconfig and set yourself up as a GUI client.
Answer: C
Q5. - (Topic 3)
Your bank’s distributed R77 installation has Security Gateways up for renewal. Which SmartConsole application will tell you which Security Gateways have licenses that will expire within the next 30 days?
A. SmartView Tracker
B. SmartPortal
C. SmartUpdate
D. SmartDashboard
Answer: A
Q6. - (Topic 3)
How are cached usernames and passwords cleared from the memory of a R77 Security Gateway?
A. By retrieving LDAP user information using the command fw fetchldap.
B. By installing a Security Policy.
C. By using the Clear User Cache button in SmartDashboard.
D. Usernames and passwords only clear from memory after they time out.
Answer: B
Q7. - (Topic 2)
Which of the following is a viable consideration when determining Rule Base order?
A. Grouping IPS rules with dynamic drop rules
B. Grouping reject and drop rules after the Cleanup Rule
C. Placing more restrictive rules before more permissive rules
D. Grouping authentication rules with QOS rules
Answer: C
Q8. - (Topic 1)
When Jon first installed his new security system, he forgot to configure DNS servers on his Security Gateway. How could Jon configure DNS servers now that his Security Gateway is in production?
A. Login to the SmartDashboard, edit the firewall Gateway object, select the tab Interfaces > Domain Name Servers.
B. Login to the firewall using SSH and run cpconfig, then select Domain Name Servers.
C. Login to the firewall using SSH and run fwm, then select System Configuration > Domain Name Servers.
D. Login to the firewall using SSH and run sysconfig, then select Domain Name Servers.
Answer: D
Q9. - (Topic 3)
Which type of R77 Security Server does not provide User Authentication?
A. FTP Security Server
B. SMTP Security Server
C. HTTPS Security Server
D. HTTP Security Server
Answer: B
Q10. - (Topic 1)
Which of the following are available SmartConsole clients which can be installed from the R77 Windows CD? Read all answers and select the most complete and valid list.
A. SmartView Tracker, CPINFO, SmartUpdate
B. SmartView Tracker, SmartDashboard, SmartLSM, SmartView Monitor
C. SmartView Tracker, SmartDashboard, CPINFO, SmartUpdate, SmartView Status
D. Security Policy Editor, Log Viewer, Real Time Monitor GUI
Answer: A
Q11. - (Topic 3)
Which of the following statements BEST describes Check Point’s Hide Network Address Translation method?
A. Translates many destination IP addresses into one destination IP address
B. One-to-one NAT which implements PAT (Port Address Translation) for accomplishing both Source and Destination IP address translation
C. Translates many source IP addresses into one source IP address
D. Many-to-one NAT which implements PAT (Port Address Translation) for accomplishing both Source and Destination IP address translation
Answer: C
Q12. - (Topic 3)
You want to configure a mail alert for every time the policy is installed to a specific Gateway. Where would you configure this alert?
A. In SmartView Monitor, select Gateway > Configure Thresholds and in SmartDashboard select Global Properties > Log and Alerts > Alert Commands.
B. In SmartView Monitor, select Gateway > Configure Thresholds.
C. In SmartDashboard, select Global Properties > Log and Alerts > Alert Commands.
D. You cannot create a mail alert for Policy installation.
Answer: A
Q13. - (Topic 3)
You find a suspicious FTP site trying to connect to one of your internal hosts. How do you block it in real time and verify it is successfully blocked? Highlight the suspicious connection in SmartView Tracker:
A. Log mode. Block it using Tools > Block Intruder menu. Observe in the Log mode that the suspicious connection does not appear again in this SmartView Tracker view.
B. Active mode. Block it using Tools > Block Intruder menu. Observe in the Active mode that the suspicious connection is listed in this SmartView Tracker view as "dropped".
C. Log mode. Block it using Tools > Block Intruder menu. Observe in the Log mode that the suspicious connection is listed in this SmartView Tracker view as "dropped".
D. Active mode. Block it using Tools > Block Intruder menu. Observe in the Active mode that the suspicious connection does not appear again in this SmartView Tracker view.
Answer: D
Q14. - (Topic 3)
Which of the following is NOT true for Clientless VPN?
A. User Authentication is supported.
B. Secure communication is provided between clients and servers that support HTTP.
C. The Gateway accepts any encryption method that is proposed by the client and supported in the VPN.
D. The Gateway can enforce the use of strong encryption.
Answer: B
Q15. - (Topic 3)
What is a Consolidation Policy?
A. A global Policy used to share a common enforcement policy for multiple Security Gateways.
B. The collective name of the logs generated by SmartReporter.
C. The collective name of the Security Policy, Address Translation, and IPS Policies.
D. The specific Policy written in SmartDashboard to configure which log data is stored in the SmartReporter database.
Answer: D