1. Home
  2. CheckPoint
  3. 156-215.13

CheckPoint 156-215.13 Online Practice Questions and Exam Preparation

156-215.13 Exam Details

  • Exam Code
    :156-215.13
  • Exam Name
    :Check Point Certified Security Administrator - GAiA
  • Certification
    :Checkpoint Certifications
  • Vendor
    :CheckPoint
  • Total Questions
    :361 Q&As
  • Last Updated
    :Dec 15, 2021

CheckPoint 156-215.13 Online Questions & Answers

  • Question 151:

    What is the primary benefit of using the command upgrade_export over either backup or snapshot?

    A. The commands backup and snapshot can take a long time to run whereas upgrade_export will take a much shorter amount of time.
    B. upgrade_export will back up routing tables, hosts files, and manual ARP configurations, where backup and snapshot will not.
    C. upgrade_export has an option to back up the system and SmartView Tracker logs while backup and snapshot will not.
    D. upgrade_export is operating system independent and can be used when backup or snapshot is not available.

  • Question 152:

    What must a Security Administrator do to comply with a management requirement to log all traffic accepted through the perimeter Security Gateway?

    A. Install the View Implicit Rules package using SmartUpdate.
    B. Define two log servers on the R76 Gateway object. Enable Log Implied Rules on the first log server. Enable Log Rule Base on the second log server. Use SmartReporter to merge the two log server records into the same database for HIPPA log audits.
    C. In Global Properties > Reporting Tools check the box Enable tracking all rules (including rules marked as None in the Track column). Send these logs to a secondary log server for a complete logging history. Use your normal log server for standard logging for troubleshooting.
    D. Check the Log Implied Rules Globally box on the R76 Gateway object.

  • Question 153:

    Identify the correct step performed by SmartUpdate to upgrade a remote Security Gateway. After selecting Packages > Distribute and Install Selected Package and choosing the target Gateway, the:

    A. SmartUpdate wizard walks the Administrator through a distributed installation.
    B. selected package is copied from the Package Repository on the Security Management Server to the Security Gateway but the installation IS NOT performed.
    C. selected package is copied from the Package Repository on the Security Management Server to the Security Gateway and the installation IS performed.
    D. selected package is copied from the SmartUpdate PC CD-ROM directly to the Security Gateway and the installation IS performed.

  • Question 154:

    What is the officially accepted diagnostic tool for IP Appliance Support?

    A. ipsoinfo
    B. cpinfo
    C. uag-diag
    D. CST

  • Question 155:

    Which of the following is a hash algorithm?

    A. DES
    B. IDEA
    C. MD5
    D. 3DES

  • Question 156:

    Which of the following describes the default behavior of an R76 Security Gateway?

    A. Traffic is filtered using controlled port scanning.
    B. IP protocol types listed as secure are allowed by default, i.e. ICMP, TCP, UDP sessions are inspected.
    C. All traffic is expressly permitted via explicit rules.
    D. Traffic not explicitly permitted is dropped.

  • Question 157:

    Anti-Spoofing is typically set up on which object type?

    A. Network
    B. Security Management object
    C. Host
    D. Security Gateway

  • Question 158:

    The INSPECT engine inserts itself into the kernel between which two OSI model layers?

    A. Physical and Data
    B. Session and Transport
    C. Data and Network
    D. Presentation and Application

  • Question 159:

    Which of the following is a viable consideration when determining Rule Base order?

    A. Grouping IPS rules with dynamic drop rules
    B. Grouping reject and drop rules after the Cleanup Rule
    C. Placing more restrictive rules before more permissive rules
    D. Grouping authentication rules with QOS rules

  • Question 160:

    Your users are defined in a Windows 2008 R2 Active Directory server. You must add LDAP users to a Client Authentication rule. Which kind of user group do you need in the Client Authentication rule in R76?

    A. All Users
    B. External-user group
    C. A group with a generic user
    D. LDAP group

Related Exams:

Tips on How to Prepare for the Exams

Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only CheckPoint exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your 156-215.13 exam preparations and CheckPoint certification application, do not hesitate to visit our Vcedump.com to find your solutions here.