CheckPoint 156-215.75 Online Practice Questions and Exam Preparation

CheckPoint 156-215.75 Online Questions & Answers

• Question 151:

  For an initial installation of Connectra, which of the following statements is TRUE?

  A. You must configure the Connectra username and password before running the First Time Wizard.
  B. It is possible to run the First Time Wizard from Expert Mode on the Connectra server.
  C. It is not possible to use the sysconfig and cpconfig utilities, until the First Time Wizard in the Administration Web GUI is successfully completed.
  D. It is not necessary to set up the Rule Base before completing Connectra's installation.
  C. It is not possible to use the sysconfig and cpconfig utilities, until the First Time Wizard in the Administration Web GUI is successfully completed.

• Question 152:

  John is configuring a new R71 Gateway cluster but he can not configure the cluster as Third Party IP Clustering because this option is not available in Gateway Cluster Properties.

  

  What's happening?

  A. Third Party Clustering is not available for R71 Security Gateways.
  B. John is not using third party hardware as IP Clustering is part of Check Point's IP Appliance.
  C. ClusterXL needs to be unselected to permit 3rd party clustering configuration.
  D. John has an invalid ClusterXL license.
  C. ClusterXL needs to be unselected to permit 3rd party clustering configuration.

• Question 153:

  You need to publish SecurePlatform routes using the ospf routing protocol. What is the correct command structure, once entering the route command, to implement ospf successfully?

  A. Run cpconfig utility to enable ospf routing
  B. ip route ospf ospf network1 ospf network2
  C. Enable Configure terminal Router ospf [id] Network [network] [wildmask] area [id]
  D. Use DBedit utility to either the objects_5_0.c file
  C. Enable Configure terminal Router ospf [id] Network [network] [wildmask] area [id]

• Question 154:

  Refer to Exhibit below:

  

  Match the ClusterXL modes with their configurations.

  A. A - 3, B - 2, C - 4, D - 1
  B. A - 2, B - 3, C - 1, D - 4
  C. A - 2, B - 3, C - 4, D - 1
  D. A - 3, B - 2, C - 1, D - 4
  D. A - 3, B - 2, C - 1, D - 4

• Question 155:

  Match the VPN-related terms with their definitions:

  

  A. A-3,B-2, C-1, D-4
  B. A-3, B-4, C-1, D-2
  C. A-3, B-2, C-4, D-1
  D. A-2, B-3, C-4, D-1
  C. A-3, B-2, C-4, D-1

• Question 156:

  Typically, when you upgrade the Security Management Server, you install and configure a fresh R75 installation on a new computer and then migrate the database from the original machine. What is the correct order of the steps below to

  successfully complete this procedure?

  1) Export databases from source.

  2) Connect target to network.

  3) Prepare the source machine for export.

  4) Import databases to target.

  5) Install new version on target.

  6) Test target deployment.

  A. 6, 5, 3, 1, 4, 2
  B. 3, 1, 5, 4, 2, 6
  C. 5, 2, 6, 3, 1, 4
  D. 3, 5, 1, 4, 6, 2
  D. 3, 5, 1, 4, 6, 2

• Question 157:

  Your customer complains of the weak performance of his systems. He has heard that Connection Templates accelerate traffic. How do you explain to the customer about template restrictions and how to verify that they are enabled?

  A. To enhance connection-establishment acceleration, a mechanism attempts to "group together" all connections that match a particular service and whose sole discriminating element is the source port. To test if connection templates are enabled, use the command fwaccel stat.
  B. To enhance connection-establishment acceleration, a mechanism attempts to "group together" all connections that match a particular service and whose sole discriminating element is the destination port. To test if connection templates are enabled, use the command fwacel templates.
  C. To enhance connection-establishment acceleration, a mechanism attempts to "group together" all connections that match a particular service and whose sole discriminating element is the destination port. To test if connection templates are enabled, use the command fw ctl templates.
  D. To enhance connection-establishment acceleration, a mechanism attempts to "group together" all connections that match a particular service and whose sole discriminating element is the source port. To test if connection templates are enabled, use the command fw ctl templates.
  A. To enhance connection-establishment acceleration, a mechanism attempts to "group together" all connections that match a particular service and whose sole discriminating element is the source port. To test if connection templates are enabled, use the command fwaccel stat.

• Question 158:

  What is a requirement for setting up Management High Availability?

  A. All SmartCenter Servers must reside in the same Local Area Network (LAN).
  B. All SmartCenter Servers must have the same amount of memory.
  C. You can only have one Secondary SmartCenter Server.
  D. All SmartCenter Servers must have the BIOS release.
  E. All SmartCenter Servers must have the same operating system.
  E. All SmartCenter Servers must have the same operating system.

• Question 159:

  When configuring an LDAP Group object, which option should you select if you do NOT want the gateway to reference the groups defined on the LDAP server for authentication purposes?

  A. OU Accept and select appropriate domain
  B. Only Sub Tree
  C. Only Group in Branch
  D. Group Agnostic
  B. Only Sub Tree

• Question 160:

  Check Point support has asked Tony for a firewall capture of accepted packets. What would be the correct syntax to create a capture file to a filename called monitor.out?

  A. Run fw monitor -e "accept;" -f monitor.out
  B. Run fw monitor -e "accept;" -c monitor.out
  C. Run fw monitor -e "accept;" -o monitor.out
  D. Run fw monitor -e "accept;" -m monitor.out
  C. Run fw monitor -e "accept;" -o monitor.out