Where do you configure VTIs on your R77 gateway in VSX mode?
A. VTIs are configured in each VS context.
B. VTIs are configured in VS0 context.
C. VTIs are not supported in VSX mode.
D. VTIs are configured in SmartDashboard.
Which Dynamic Routing Protocols are supported in GAiA in a Route-based VPN configuration?
A. OSPF,BGP
B. OSPF
C. OSPF,BGP,RIPv2
D. OSPF,BGP,RIPv1,RIPv2
You are configuring VTIs in a clustered environment. On Peer A the VTI name is VT_Cluster_GWA and on Peer B the VTI name is VT_Cluster_GWB. You find that the route-based tunnel is not coming up. What could be the cause?
A. The names for your peers have been reversed.
B. You have not issued the command "vpn write config' command.
C. You have not licensed your gateways for VTIs.
D. All VTIs going to the same remote peer must have the same name.
What are the common Best Practices for configuring QoS over a route-based VPN?
A. IKE traffic must have a minimum Guarantee of 50% of the external interface throughput.
B. QoS is not supported.
C. Ensure the VTI is numbered.
D. Ensure the VTI is unnumbered.
You are configuring a VTI in a clustered environment. Which of the following must be TRUE?
A. Every interface on each member requires a unique IP address.
B. Each member must have the same source IP address.
C. You do not need to have cluster IP addresses.
D. You cannot set up a VTI in a clustered environment.
What type(s) of VTI interfaces do Edge gateways support?
A. Both numbered and unnumbered
B. Unnumbered interfaces
C. Numbered interfaces
D. Neither numbered and unnumbered
What does the command vpn shell interface add numbered 192.168.0.1 192.168.0.2 Gateway_A to_B accomplish?
A. Between Security Gateways A and B, 192.168.0.1 is assigned as the endpoint IP address to Gateway
A.
192.168.0.2 is assigned to Gateway B.
B. Between Security Gateways A and B 192.168.0.2 is assigned as the endpoint IP address to Gateway
A.
192.168.0.1 is assigned to Gateway B.
C. shell is not a valid option for the command vpn.
D. This command can be used to create a VPN tunnel from the command line without having any VPN configuration in Smart Dashboard (although "IPSec VPN" must still be enabled on the gateway).
Where do you enable Route-based VPN?
A. WebUI
B. VPN shell
C. Security Gateway Object
D. vpn_route.conf
The current release of Check Point R77, what is a potential performance-related drawback to using Virtual Tunnel Interfaces (VTI) rather than Domain-based VPNs?
A. Use of VTIs will disable CoreXL and therefore will negatively impact hardware platforms running more than one CPU core.
B. Dynamic routing protocols will work across a domain-based VPN, but will not work across a VTI.
C. Use of VTIs will disable the entire SecureXL mechanism and prevent any traffic acceleration.
D. Domain-based VPNs are easier to configure than VTIs and therefore is the preferred implementation.
When configuring a Numbered VPN-Tunnel, what parameters are necessary?
A. VPN Tunnel ID, Local Address, Remote Address
B. Peer, Local Address, Remote Address
C. VPN Tunnel ID, Peer, Local Address, Remote Address
D. VPN Tunnel ID, Peer, Physical Device
Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only CheckPoint exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your 156-115.77 exam preparations and CheckPoint certification application, do not hesitate to visit our Vcedump.com to find your solutions here.