1. Home
  2. CheckPoint
  3. 156-115.77

Check Point Certified Security Master

Exam Details

  • Exam Code
    :156-115.77
  • Exam Name
    :Check Point Certified Security Master
  • Certification
    :Checkpoint Certifications
  • Vendor
    :CheckPoint
  • Total Questions
    :60 Q&As
  • Last Updated
    :Dec 09, 2024

CheckPoint Checkpoint Certifications 156-115.77 Questions & Answers

  • Question 121:

    What should you do after editing fwkern.conf to enable NAT templates?

    A. Install database

    B. Reboot

    C. Install policy

    D. Make sure the change shows up in Smartview Monitor

  • Question 122:

    How would you determine the value of 'Maximum concurrent connections' of the NAT Table?

    A. fwx_alloc

    B. fwx_max_conns

    C. fwx_auth

    D. objects_5_0.C

  • Question 123:

    From a Best Practices perspective, what percentage of your packets should be accelerated?

    A. 65%

    B. 90%

    C. 100%

    D. 75%

  • Question 124:

    How does the Check Point Security Administrator enable NAT Templates?

    A. Run commands with syntax fw ctl set int cphwd_nat_templates_support 1 and fw ctl set int cphwd_nat_templates_enabled 1.

    B. Edit file $FWDIR/boot/modules/fwkern.conf with the lines "cphwd_nat_templates_support=1" and "cphwd_nat_templates_enabled=1".

    C. Set Firewall object > NAT > Advanced

    D. Set Global properties > NAT-Network address translation

  • Question 125:

    You run the command fwaccel conns and notice in the output that all the connections have "F" in the "flags" column, see below:

    What does this mean?

    A. Connections are being "forward to firewall" ("f2f").

    B. Connections are being "forwarded" to the accelerating engine.

    C. Connections are accelerated ("fastpath").

    D. Connections have the fragment flag set.

  • Question 126:

    You are running an inventory process within your corporate environment (R77) and need to find out CPU, memory, disk space, and information regarding the software blades enabled. What command could you use to easily gather this information?

    A. cpconfig

    B. fw ctl pstat

    C. SmartView Tracker

    D. cpview

  • Question 127:

    A Rule Base has been improperly configured with a rule which disables templating at the top of the Rule Base. How will this impact traffic acceleration?

    A. SecureXL is disabled.

    B. Templates are disabled, and throughput acceleration only functions for rules above this one.

    C. Templates are disabled for this rule but it does not impact the rest of the Rule Base.

    D. Templates are disabled but throughput acceleration is still taking place.

  • Question 128:

    You issue the command fwaccel stat and see the following: What is a possible reason that the "accept templates" is disabled?

    A. Rule one is a drop rule.

    B. Rule one uses static NAT.

    C. Rule one contains a time object.

    D. Your administrator has not enabled templating.

  • Question 129:

    PXL is considered to be what type of acceleration?

    A. Fast Path

    B. Slow Path

    C. Medium Path

    D. PXL is not related to acceleration

  • Question 130:

    What type of connections cannot be templated?

    A. Any connections that contain Hide NAT

    B. Complex connections such as FTP, H323, SQL, ETC

    C. UDP because it is not connection oriented

    D. TCP

Related Exams:

Tips on How to Prepare for the Exams

Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only CheckPoint exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your 156-115.77 exam preparations and CheckPoint certification application, do not hesitate to visit our Vcedump.com to find your solutions here.