CheckPoint 156-115.77 Online Practice Questions and Exam Preparation

CheckPoint 156-115.77 Online Questions & Answers

• Question 181:

  A firewall administrator knows the details of the packet header for an already established connection going through a firewall. What command will show if SecureXL will accelerate that packet?

  A. fw ctl zdebug + sxl error warning asm
  B. fwaccel conns
  C. fwaccel templates
  D. fw tab t connections f | grep `dest. port #' | grep `source port #' | grep `dest. IP address'
  C. fwaccel templates

• Question 182:

  The command fwaccel stat displays what information?

  A. Accelerator status, accept templates, drop templates
  B. Accelerated packets, accept templates, dropped packets
  C. Accelerator status, accelerated rules, drop templates
  D. Accelerator status, CoreXL state, drop templates
  A. Accelerator status, accept templates, drop templates

• Question 183:

  A system administrator wants to convert an IPv6 gateway from a standard gateway into a gateway running VSX mode. What does he need to consider?

  A. It is not possible to convert a gateway with IPv6 enabled to VSX mode.
  B. There needs to be proper IPv6 routing setup.
  C. At least two interfaces need to be configured with IPv6.
  D. Policy needs to be properly applied to the gateway before converting the system to VSX mode.
  A. It is not possible to convert a gateway with IPv6 enabled to VSX mode.

• Question 184:

  Look at the follow Rule Base display. Rule 5 contains a TIME object. What is the effect on the following rules?

  

  A. Rule 6 will be eligible but Rule 7 will not.
  B. All subsequent rules below Rule 5 will not be templated, regardless of the rule
  C. No effect. Rules 6 and 7 will be eligible for templating.
  D. The restriction on one rule does not affect later rules with regards to templates.
  B. All subsequent rules below Rule 5 will not be templated, regardless of the rule

• Question 185:

  What flag option(s) must be used to dump the complete table in friendly format, assuming there are more than one hundred connections in the table?

  A. fw tab -t connections -f
  B. fw tab -t connect -f -u
  C. fw tab -t connections -s
  D. fw tab -t connections -f u
  B. fw tab -t connect -f -u

• Question 186:

  The command fw monitor -p all displays what type of information?

  A. It captures all points of the chain as the packet goes through the firewall kernel.
  B. This is not a valid command.
  C. The -p is used to resolve MAC address in the firewall capture.
  D. It does a firewall monitor capture on all interfaces.
  A. It captures all points of the chain as the packet goes through the firewall kernel.

• Question 187:

  What is one way to check cluster status on two gateways running in HA mode?

  A. show cluster
  B. cphaprob stat
  C. cp ha prob stat
  D. show cluster ha status
  B. cphaprob stat

• Question 188:

  In Tracker you are troubleshooting a VPN issue between your gateway and a partner site and you get a drop log that states "No proposal chosen" what is the most likely cause?

  A. There is a time mismatch
  B. The peer machine is not accepting multicast packets
  C. A mismatch in the settings between the two peers
  D. Using IKEv1 when peer uses IKEv2
  C. A mismatch in the settings between the two peers

• Question 189:

  Your ARP cache is overflowing negatively impacting users experience on your network. Which command can you issue to increase the ARP cache on the fly? You do not need this to survive reboot.

  A. Modify the /etc/sysctl.conf: net.ipv4.neigh.default.gc_thresh3 = 1024.
  B. echo 1024 > /proc/sys/net/ipv4/neigh/default/gc_thresh3
  C. arp cache table > 1024
  D. You cannot increase the size of the ARP cache on the fly.
  B. echo 1024 > /proc/sys/net/ipv4/neigh/default/gc_thresh3

• Question 190:

  Which is NOT a valid upgrade method in an R77 GAiA ClusterXL deployment?

  A. Optimal Service Upgrade
  B. Full Connectivity Upgrade
  C. Minimal Effort Upgrade
  D. Automatic Incremental Upgrade
  D. Automatic Incremental Upgrade