1. Home
  2. CheckPoint
  3. 156-115.77

CheckPoint 156-115.77 Online Practice Questions and Exam Preparation

156-115.77 Exam Details

  • Exam Code
    :156-115.77
  • Exam Name
    :Check Point Certified Security Master
  • Certification
    :Checkpoint Certifications
  • Vendor
    :CheckPoint
  • Total Questions
    :295 Q&As
  • Last Updated
    :Dec 09, 2024

CheckPoint 156-115.77 Online Questions & Answers

  • Question 71:

    When are rules that include Identity Awareness Access (IDA) roles accelerated through SecureXL?

    A. Only when `Unauthenticated Guests' is included in the access role.
    B. Never, the inclusion of an IDA role disables SecureXL.
    C. The inclusion of an IDA role has no bearing on whether the connection for the rule is accelerated.
    D. Always, the inclusion of an IDA role guarantees the connection for the rule is accelerated.

  • Question 72:

    ACME Corp has a cluster consisting of two 13500 appliances. As the Firewall Administrator, you notice that on an output of top, you are seeing high CPU usage of the cores assigned as SNDs, but low CPU usage on cores assigned to individual fw_worker_X processes. What command should you run next to performance tune your cluster?

    A. fw ctl debug m cluster + all this will show you all the connections being processed by ClusterXL and explain the high CPU usage on your appliance.
    B. fwaccel off this will turn off SecureXL, which is causing your SNDs to be running high in the first place.
    C. fwaccel stats s this will show you the acceleration profile of your connections and potentially why your SNDs are running high while other cores are running low.
    D. fw tab t connections s this will show you a summary of your connections table, and allow you to determine whether there is too much traffic traversing your firewall.

  • Question 73:

    According to this Rule Base, templates will be created until which rule?

    A. Rule 4
    B. Rule 2
    C. Rule 3
    D. Rule 5

  • Question 74:

    In IPS what does a high confidence rating mean?

    A. This is a rating for how confident Check Point is with catching this attack
    B. This is a rating for how likely this attack is to penetrate most systems
    C. There is a high likelihood of false positives
    D. There is a low likelihood of false positives

  • Question 75:

    When using Geo Protections, you find there are logs for a country that you believe is incorrect. What file do you review to verify what country Geo Protections should identify the traffic as?

    A. asm.C
    B. objects.C
    C. objects_5_0.C
    D. IpToCountry.csv

  • Question 76:

    What does the command fwaccel templates do?

    A. Starts firewall acceleration after fwaccel off was run or SecureXL was enabled by using the command cpconfig.
    B. That SecureXL has been enabled in the cpconfig command menu.
    C. Shows templates existing in the SecureXL device. This is so that an administrator can look for the template that matches the specific traffic.
    D. The Rule Base mapping between actual rules and the template built up in Layer 2.

  • Question 77:

    A fwm debug provides the following output. What prevents the customer from logging into SmartDashboard?

    A. There are not any policy to login in SmartDashboard
    B. FWM process is crashed and returned null to access
    C. User and password are incorrect
    D. IP not defined in $FWDIR/conf/gui-clients

  • Question 78:

    When using the command fw monitor, what command ensures the capture is accurate?

    A. export TDERROR_ALL_ALL=5
    B. fwaccel off
    C. fwaccel on
    D. fw accel off

  • Question 79:

    You are running some diagnostics on your GAIA gateway. You are reviewing the number of fragmented packets; you notice that there are a lot of large and duplicate packets. Which command did you issue to get this information?

    A. sysconfig
    B. fw ctl pstat
    C. fw ctl get int fw_frag_stats
    D. cat /proc/cpuinfo

  • Question 80:

    You are analyzing your firewall logs, /var/log/messages, and repeatedly see the following kernel message:

    'kernel: neighbor table overflow'

    What is the cause?

    A. Arp cache overflow
    B. OSPF neighbor down
    C. Nothing, you can disconsider it.
    D. Cluster member table overflow

Related Exams:

Tips on How to Prepare for the Exams

Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only CheckPoint exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your 156-115.77 exam preparations and CheckPoint certification application, do not hesitate to visit our Vcedump.com to find your solutions here.