CheckPoint 156-915.77 Free Practice Questions

NEW QUESTION 1

You have a diskless appliance platform. How do you keep swap file wear to a minimum?

• A. Issue FW-1 bases its package structure on the Security Management Server, dynamically loading when the firewall is booted.
• B. The external PCMCIA-based flash extension has the swap file mapped to it, allowing easy replacement.
• C. Use PRAM flash devices, eliminating the longevity.
• D. A RAM drive reduces the swap file thrashing which causes fast wear on the device.

Answer: D

NEW QUESTION 2

Which command would provide the most comprehensive diagnostic information to Check Point Technical Support?

• A. fw cpinfo
• B. cpinfo -o date.cpinfo.txt
• C. diag
• D. cpstat - date.cpstat.txt

Answer: B

NEW QUESTION 3
CORRECT TEXT
In a zero downtime scenario, which command do you run manually after all cluster members are upgraded?

• A. Yes
• B. Not Mastered

Answer: A

NEW QUESTION 4

You run cphaprob -a if. When you review the output, you find the word DOWN. What does DOWN mean?

• A. The cluster link is down.
• B. The physical interface is administratively set to DOWN.
• C. The physical interface is down.
• D. CCP pakets couldn't be sent to or didn't arrive from neighbor member.

Answer: D

NEW QUESTION 5
4.8.2

• A. Yes
• B. Not Mastered

Answer: A

NEW QUESTION 6
Install the Security Policy.

• A. Yes
• B. Not Mastered

Answer: A

NEW QUESTION 7

How could you compare the Fingerprint shown to the Fingerprint on the server? Exhibit:

• A. Run cpconfig, select the Certificate's Fingerprint option and view the fingerprint
• B. Run cpconfig, select the GUI Clients option and view the fingerprint
• C. Run cpconfig, select the Certificate Authority option and view the fingerprint
• D. Run sysconfig, select the Server Fingerprint option and view the fingerprint

Answer: A

NEW QUESTION 8

To qualify as an Identity Awareness enabled rule, which column MAY include an Access Role?

• A. Source
• B. Track
• C. User
• D. Action

Answer: A

NEW QUESTION 9
CORRECT TEXT
Fill in the blank.

In Load Sharing Unicast mode, the internal cluster IP address is 10.4.8.3. The internal interfaces on two members are 10.4.8.1 and 10.4.8.2. Internal host 10.4.8.108 Pings 10.4.8.3, and receives replies. The following is the ARP table from the internal Windows host 10.4.8.108. Review the exhibit and type the IP address of the member serving as the pivot machine in the space below.

• A. Yes
• B. Not Mastered

Answer: A

NEW QUESTION 10

Which command displays the installed Security Gateway version?

• A. fw printver
• B. fw ver
• C. fw stat
• D. cpstat -gw

Answer: B

NEW QUESTION 11
Install the Security Policy.

• A. Yes
• B. Not Mastered

Answer: A

NEW QUESTION 12

Charles requests a Website while using a computer not in the net_singapore network.

What is TRUE about his location restriction?

• A. Source setting in Source column always takes precedence.
• B. Source setting in User Properties always takes precedence.
• C. As location restrictions add up, he would be allowed from net_singapore and net_sydney.
• D. It depends on how the User Auth object is configured; whether User Properties or Source Restriction takes precedence.

Answer: D

NEW QUESTION 13

Where is it necessary to configure historical records in SmartView Monitor to generate Express reports in SmartReporter?

• A. In SmartDashboard, the SmartView Monitor page in the R77 Security Gateway object
• B. In SmartReporter, under Express > Network Activity
• C. In SmartReporter, under Standard > Custom
• D. In SmartView Monitor, under Global Properties > Log and Masters

Answer: A

NEW QUESTION 14

Which of the following items should be configured for the Security Management Server to authenticate using LDAP?

• A. Login Distinguished Name and password
• B. Windows logon password
• C. Check Point Password
• D. WMI object

Answer: A

NEW QUESTION 15

When migrating the SmartEvent data base from one server to another, the first step is to back up the files on the original server. Which of the following commands should you run to back up the SmartEvent data base?

• A. migrate export
• B. eva_db_backup
• C. snapshot
• D. backup

Answer: B

NEW QUESTION 16

You have three Gateways in a mesh community. Each gateway’s VPN Domain is their internal network as defined on the Topology tab setting All IP Addresses behind Gateway based on Topology information.
You want to test the route-based VPN, so you created VTIs among the Gateways and created static route entries for the VTIs. However, when you test the VPN, you find out the VPN still go through the regular domain IPsec tunnels instead of the routed VTI tunnels.
What is the problem and how do you make the VPN use the VTI tunnels?

• A. Domain VPN takes precedence over the route-based VT
• B. To make the VPN go through VTI, remove the Gateways out of the mesh community and replace with a star community
• C. Domain VPN takes precedence over the route-based VT
• D. To make the VPN go through VTI, use an empty group object as each Gateway’s VPN Domain
• E. Route-based VTI takes precedence over the Domain VP
• F. To make the VPN go through VTI, use dynamic-routing protocol like OSPF or BGP to route the VTI address to the peer instead of static routes
• G. Route-based VTI takes precedence over the Domain VP
• H. Troubleshoot the static route entries to insure that they are correctly pointing to the VTI gateway IP.

Answer: B

NEW QUESTION 17

You are the Security Administrator for MegaCorp. A Check Point firewall is installed and in use on a platform using GAiA. You have trouble configuring the speed and duplex settings of your Ethernet interfaces. Which of the following commands can be used in CLISH to configure the speed and duplex settings of an Ethernet interface and will survive a reboot? Give the BEST answer.

• A. ethtool
• B. set interface
• C. mii_tool
• D. ifconfig -a

Answer: B

NEW QUESTION 18

What is Check Point's CoreXL?

• A. A way to synchronize connections across cluster members
• B. TCP-18190
• C. Multiple core interfaces on the device to accelerate traffic
• D. Multi Core support for Firewall Inspection

Answer: D

NEW QUESTION 19
CORRECT TEXT
Fill in the blank.

In New Mode HA, the internal cluster IP VIP address is 10.4.8.3. The internal interfaces on two members are 10.4.8.1 and 10.4.8.2 Internal host 10.4.8.108 pings 10.4.8.3, and receives replies. Review the ARP table from the internal Windows host 10.4.8.108. According to the output, which member is the standby machine?

• A. Yes
• B. Not Mastered

Answer: A

NEW QUESTION 20

In SmartDashboard, Translate destination on client side is checked in Global Properties. When Network Address Translation is used:

• A. It is not necessary to add a static route to the Gateway’s routing table.
• B. It is necessary to add a static route to the Gateway’s routing table.
• C. The Security Gateway’s ARP file must be modified.
• D. VLAN tagging cannot be defined for any hosts protected by the Gateway.

Answer: A

NEW QUESTION 21
......