CheckPoint 156-215.13 Online Practice Questions and Exam Preparation

CheckPoint 156-215.13 Online Questions & Answers

• Question 271:

  What happens when you select File > Export from the SmartView Tracker menu?

  A. Exported log entries are not viewable in SmartView Tracker.
  B. Logs in fw.log are exported to a file that can be opened by Microsoft Excel.
  C. Exported log entries are deleted from fw.log.
  D. Current logs are exported to a new *.log file.
  B. Logs in fw.log are exported to a file that can be opened by Microsoft Excel.

• Question 272:

  Several Security Policies can be used for different installation targets. The firewall protecting Human Resources' servers should have a unique Policy Package. These rules may only be installed on this machine and not accidentally on the Internet firewall. How can this be configured?

  A. A Rule Base is always installed on all possible targets. The rules to be installed on a firewall are defined by the selection in the row Install On of the Rule Base.
  B. When selecting the correct firewall in each line of the row Install On of the Rule Base, only this firewall is shown in the list of possible installation targets after selecting Policy > Install.
  C. In the SmartDashboard policy, select the correct firewall to be the Specific Target of the rule.
  D. A Rule Base can always be installed on any Check Point firewall object. It is necessary to select the appropriate target directly after selecting Policy > Install.
  C. In the SmartDashboard policy, select the correct firewall to be the Specific Target of the rule.

• Question 273:

  When configuring anti-spoofing on the Security Gateway object interfaces, which of the following is NOT a valid R76 topology configuration?

  A. Specific
  B. External
  C. Not Defined
  D. Any
  D. Any

• Question 274:

  To reduce the information given to you in SmartView Tracker, what can you do to find information about data being sent between pcosaka and pctokyo?

  A. Apply a source filter by adding both endpoint IP addresses with the equal option set.
  B. Use a regular expression to filter out relevant logging entries.
  C. Double-click an entry representing a connection between both endpoints.
  D. Press CTRL+F in order to open the find dialog, and then search the corresponding IP addresses.
  A. Apply a source filter by adding both endpoint IP addresses with the equal option set.

• Question 275:

  What type of traffic can be re-directed to the Captive Portal?

  A. FTP
  B. All of the above
  C. SMTP
  D. HTTP
  D. HTTP

• Question 276:

  To check the Rule Base, some rules can be hidden so they do not distract the administrator from the unhidden rules. Assume that only rules accepting HTTP or SSH will be shown. How do you accomplish this?

  A. This cannot be configured since two selections (Service, Action) are not possible.
  B. Ask your reseller to get a ticket for Check Point SmartUse and deliver him the Security Management Server cpinfo file.
  C. In SmartDashboard menu, select Search > Rule Base Queries. In the window that opens, create a new Query, give it a name (e.g. "HTTP_SSH") and define a clause regarding the two services HTTP and SSH. When having applied this, define a second clause for the action Accept and combine them with the Boolean operator AND.
  D. In SmartDashboard, right-click in the column field Service > Query Column. Then, put the services HTTP and SSH in the list. Do the same in the field Action and select Accept here.
  C. In SmartDashboard menu, select Search > Rule Base Queries. In the window that opens, create a new Query, give it a name (e.g. "HTTP_SSH") and define a clause regarding the two services HTTP and SSH. When having applied this, define a second clause for the action Accept and combine them with the Boolean operator AND.

• Question 277:

  If a Security Gateway enforces three protections, LDAP Injection, Malicious Code Protector, and Header Rejection, which Check Point license is required in SmartUpdate?

  A. SmartEvent Intro
  B. IPS
  C. SSL: VPN
  D. Data Loss Prevention
  B. IPS

• Question 278:

  How are cached usernames and passwords cleared from the memory of a R76 Security Gateway?

  A. By retrieving LDAP user information using the command fw fetchldap.
  B. By installing a Security Policy.
  C. By using the Clear User Cache button in SmartDashboard.
  D. Usernames and passwords only clear from memory after they time out.
  B. By installing a Security Policy.

• Question 279:

  You have three servers located in a DMZ, using private IP addresses. You want internal users from 10.10.10.x to access the DMZ servers by public IP addresses. Internal_net 10.10.10.x is configured for Hide NAT behind the Security Gateway's external interface.

  

  What is the best configuration for 10.10.10.x users to access the DMZ servers, using the DMZ servers' public IP addresses?

  A. When connecting to the Internet, configure manual Static NAT rules to translate the DMZ servers.
  B. When connecting to internal network 10.10.10.x, configure Hide NAT for the DMZ network behind the Security Gateway DMZ interface.
  C. When the source is the internal network 10.10.10.x, configure manual static NAT rules to translate the DMZ servers.
  D. When trying to access DMZ servers, configure Hide NAT for 10.10.10.x behind the DMZ's interface.
  C. When the source is the internal network 10.10.10.x, configure manual static NAT rules to translate the DMZ servers.

• Question 280:

  Tom has been tasked to install Check Point R76 in a distributed deployment. Before Tom installs the systems this way, how many machines will he need if he does not include a SmartConsole machine in his calculations?

  A. Three machines
  B. One machine
  C. One machine, but it needs to be installed using SecurePlatform for compatibility purposes
  D. Two machines
  D. Two machines