What statement is true regarding Visitor Mode?
A. VPN authentication and encrypted traffic are tunneled through port TCP 443.
B. All VPN traffic is tunneled through UDP port 4500.
C. Only Main mode and Quick mode traffic are tunneled on TCP port 443.
D. Only ESP traffic is tunneled through port TCP 443.
Phase 1 uses________.
A. Conditional
B. Sequential
C. Asymmetric
D. Symmetric
If you were NOT using IKE aggressive mode for your IPsec tunnel, how many packets would you see for normal Phase 1 exchange?
A. 6
B. 2
C. 3
D. 9
How many packets does the IKE exchange use for Phase 1 Main Mode?
A. 6
B. 1
C. 3
D. 12
How many packets does the IKE exchange use for Phase 1 Aggressive Mode?
A. 12
B. 3
C. 1
D. 6
Which of the following actions take place in IKE Phase 2 with Perfect Forward Secrecy disabled?
A. The DH public keys are exchanged.
B. Peers authenticate using certificates or preshared secrets.
C. Symmetric IPsec keys are generated.
D. Each Security Gateway generates a private Diffie-Hellman (DH) key from random pools.
What can NOT be selected for VPN tunnel sharing?
A. One tunnel per subnet pair
B. One tunnel per Gateway pair
C. One tunnel per pair of hosts
D. One tunnel per VPN domain pair
Marc is a Security Administrator configuring a VPN tunnel between his site and a partner site. He just created the partner city's firewall object and a community. While trying to add the firewalls to the community only his firewall could be chosen. The partner city's firewall does not appear. What is a possible reason for the problem?
A. IPsec VPN Software Blade on the partner city's firewall object is not activated.
B. The partner city's firewall object was created as an interoperable device.
C. The partner city's Gateway is running VPN-1 NG AI.
D. Only Check Point Gateways could be added to a community.
If Henry wanted to configure Perfect Forward Secrecy for his VPN tunnel, in which phase would he be configuring this?
A. Aggressive Mode
B. Diffie-Hellman
C. Phase 2
D. Phase 1
You install and deploy SecurePlatform with default settings. You allow Visitor Mode in the Remote Access properties of the Gateway object and install policy, but SecureClient refuses to connect. What is the cause of this?
A. Set Visitor Mode in Policy > Global Properties / Remote-Access / VPN - Advanced.
B. Office mode is not configured.
C. The WebUI on SecurePlatform runs on port 443 (HTTPS). When you configure Visitor Mode it cannot bind to default port 443, because it's used by another program (WebUI). You need to change the WebUI port, or run Visitor Mode on a different port.
D. You need to start SSL Network Extender first, than use Visitor Mode.
Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only CheckPoint exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your 156-215.75 exam preparations and CheckPoint certification application, do not hesitate to visit our Vcedump.com to find your solutions here.