CheckPoint 156-215.75 Online Practice Questions and Exam Preparation

CheckPoint 156-215.75 Online Questions & Answers

• Question 411:

  Which SmartReporter report type is generated from the SmartView Monitor history file?

  A. Custom
  B. Express
  C. Traditional
  D. Standard
  B. Express

• Question 412:

  Identity Agent is a lightweight endpoint agent that authenticates securely with Single Sign-On (SSO). Which of the following is NOT a recommended use for this method?

  A. When accuracy in detecting identity is crucial
  B. Identity based enforcement for non-AD users (non-Windows and guest users)
  C. Protecting highly sensitive servers
  D. Leveraging identity for Data Center protection
  B. Identity based enforcement for non-AD users (non-Windows and guest users)

• Question 413:

  Which of the following explains Role Segregation?

  A. Administrators have different abilities than managers within SmartWorkflow.
  B. Different tasks within SmartDashboard are divided according to firewall administrator permissions.
  C. Changes made by an administrator in a SmartWorkflow session must have managerial approval prior to commitment.
  D. SmartWorkflow can be configured so that managers can only view their assigned sessions
  C. Changes made by an administrator in a SmartWorkflow session must have managerial approval prior to commitment.

• Question 414:

  _____________ generates a SmartEvent Report from its SQL database.

  A. SmartEvent Client
  B. Security Management Server
  C. SmartReporter
  D. SmartDashboard Log Consolidator
  C. SmartReporter

• Question 415:

  By default, a standby Security Management Server is automatically synchronized by an active Security Management Server, when:

  A. The user data base is installed.
  B. The standby Security Management Server starts for the first time.
  C. The Security Policy is installed.
  D. The Security Policy is saved.
  C. The Security Policy is installed.

• Question 416:

  Refer to the to the network topology below.

  

  You have IPS software Blades active on security Gateways sglondon, sgla, and sgny, but still experience attacks on the Web server in the New York DMZ. How is this possible?

  A. All of these options are possible.
  B. Attacker may have used a touch of evasion techniques like using escape sequences instead of clear text commands. It is also possible that there are entry points not shown in the network layout, like rouge access points.
  C. Since other Gateways do not have IPS activated, attacks may originate from their networks without any noticing
  D. An IPS may combine different technologies, but is dependent on regular signature updates and well-turned automatically algorithms. Even if this is accomplished, no technology can offer 100% protection.
  A. All of these options are possible.

• Question 417:

  DShield is a Check Point feature used to block which of the following threats?

  A. Cross Site Scripting
  B. SQL injection
  C. DDOS
  D. Buffer overflows
  E. Trojan horses
  C. DDOS

• Question 418:

  Which application is used to create a File-Share Application?

  A. SmartDashboard (SSL VPN Tab)
  B. SmartPortal WebUI (File-Share Tab)
  C. SSL VPN Portal WebUI (File-Share Tab)
  D. Provider-1 MDG (Global VPNs Tab)
  A. SmartDashboard (SSL VPN Tab)

• Question 419:

  __________ is a proprietary Check Point protocol. It is the basis for Check Point ClusterXL inter- module communication.

  A. HA OPCODE
  B. RDP
  C. CKPP
  D. CCP
  D. CCP

• Question 420:

  Which of the following commands shows full synchronization status?

  A. cphaprob. i list
  B. cphastop
  C. fw ctl pstat
  D. cphaprob. a if
  E. fwhastat
  A. cphaprob. i list