1. Home
  2. CheckPoint
  3. 156-215.13

CheckPoint 156-215.13 Online Practice Questions and Exam Preparation

156-215.13 Exam Details

  • Exam Code
    :156-215.13
  • Exam Name
    :Check Point Certified Security Administrator - GAiA
  • Certification
    :Checkpoint Certifications
  • Vendor
    :CheckPoint
  • Total Questions
    :361 Q&As
  • Last Updated
    :Dec 15, 2021

CheckPoint 156-215.13 Online Questions & Answers

  • Question 101:

    Which of the following can be found in cpinfo from an enforcement point?

    A. Policy file information specific to this enforcement point
    B. The complete file objects_5_0.c
    C. VPN keys for all established connections to all enforcement points
    D. Everything NOT contained in the file r2info

  • Question 102:

    Which operating systems are supported by a Check Point Security Gateway on an open server? Select MOST complete list.

    A. Check Point GAiA and SecurePlatform, and Microsoft Windows
    B. Check Point GAiA and SecurePlatform, IPSO, Sun Solaris, Microsoft Windows
    C. Check Point GAiA, Microsoft Windows, Red Hat Enterprise Linux, Sun Solaris, IPSO
    D. Sun Solaris, Red Hat Enterprise Linux, Check Point SecurePlatform, IPSO, Microsoft Windows

  • Question 103:

    Your company is still using traditional mode VPN configuration on all Gateways and policies. Your manager now requires you to migrate to a simplified VPN policy to benefit from the new features. This needs to be done with no downtime due to critical applications which must run constantly. How would you start such a migration?

    A. This can not be done as it requires a SIC- reset on the Gateways first forcing an outage.
    B. This cannot be done without downtime as a VPN between a traditional mode Gateway and a simplified mode Gateway does not work.
    C. Convert the required Gateway policies using the simplified VPN wizard, check their logic and then migrate Gateway per Gateway.
    D. You first need to completely rewrite all policies in simplified mode and then push this new policy to all Gateways at the same time.

  • Question 104:

    Your shipping company uses a custom application to update the shipping distribution database. The custom application includes a service used only to notify remote sites that the distribution database is malfunctioning. The perimeter Security Gateway's Rule Base includes a rule to accept this traffic. Since you are responsible for multiple sites, you want notification by a text message to your cellular phone, whenever traffic is accepted on this rule. Which of the following would work BEST for your purpose?

    A. SmartView Monitor Threshold
    B. SNMP trap
    C. Logging implied rules
    D. User-defined alert script

  • Question 105:

    You would use the Hide Rule feature to:

    A. View only a few rules without the distraction of others.
    B. Hide rules from read-only administrators.
    C. Hide rules from a SYN/ACK attack.
    D. Make rules invisible to incoming packets.

  • Question 106:

    Where are SmartEvent licenses installed?

    A. Security Gateway
    B. Log Server
    C. Security Management Server
    D. SmartEvent server

  • Question 107:

    You run cpconfig to reset SIC on the Security Gateway. After the SIC reset operation is complete, the policy that will be installed is the:

    A. Default filter.
    B. Last policy that was installed.
    C. Standard policy.
    D. Initial policy.

  • Question 108:

    A Cleanup rule:

    A. drops packets without logging connections that would otherwise be dropped and logged by default.
    B. logs connections that would otherwise be accepted without logging by default.
    C. drops packets without logging connections that would otherwise be accepted and logged by default.
    D. logs connections that would otherwise be dropped without logging by default.

  • Question 109:

    How granular may an administrator filter an Access Role with identity awareness?

    A. Windows Domain
    B. AD User
    C. Radius Group
    D. Specific ICA Certificate

  • Question 110:

    When using an encryption algorithm, which is generally considered the best encryption method?

    A. DES
    B. CAST cipher
    C. AES
    D. Triple DES

Related Exams:

Tips on How to Prepare for the Exams

Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only CheckPoint exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your 156-215.13 exam preparations and CheckPoint certification application, do not hesitate to visit our Vcedump.com to find your solutions here.