CheckPoint Checkpoint Certifications 156-215.77 Questions & Answers

• Question 121:

  What command syntax would you use to see accounts the gateway suspects are service accounts?

  A. pdp check_log

  B. pdp show service

  C. adlog check_accounts

  D. adlog a service_accounts

  Correct Answer: D

• Question 122:

  Match the following commands to their correct function. Each command has one function only listed. Exhibit:

  

  A. C1>F6; C2>F4; C3>F2; C4>F5

  B. C1>F2; C2>F1; C3>F6; C4>F4

  C. C1>F2; C2>F4; C3>F1; C4>F5

  D. C1>F4; C2>F6; C3>F3; C4>F2

  Correct Answer: A

• Question 123:

  Which of the following statements is TRUE about management plug-ins?

  A. A management plug-in interacts with a Security Management Server to provide new features and support for new products.

  B. Installing a management plug-in is just like an upgrade process.

  C. Using a plug-in offers full central management only if special licensing is applied to specific features of the plug-in.

  D. The plug-in is a package installed on the Security Gateway.

  Correct Answer: A

• Question 124:

  A _______ rule is used to prevent all traffic going to the R77 Security Gateway.

  A. IPS

  B. Cleanup

  C. Reject

  D. Stealth

  Correct Answer: D

• Question 125:

  Which rules are not applied on a first-match basis?

  A. User Authentication

  B. Client Authentication

  C. Session Authentication

  D. Cleanup

  Correct Answer: A

• Question 126:

  You have included the Cleanup Rule in your Rule Base. Where in the Rule Base should the Accept ICMP Requests implied rule have no effect?

  A. Last

  B. After Stealth Rule

  C. First

  D. Before Last

  Correct Answer: A

• Question 127:

  Which of the following tools is used to generate a Security Gateway R77 configuration report?

  A. fw cpinfo

  B. infoCP

  C. cpinfo

  D. infoview

  Correct Answer: C

• Question 128:

  Before upgrading SecurePlatform to GAiA, you should create a backup. To save time, many administrators use the command backup. This creates a backup of the Check Point configuration as well as the system configuration.

  An administrator has installed the latest HFA on the system for fixing traffic problem after creating a backup file. There is a mistake in the very complex static routing configuration. The Check Point configuration has not been changed. Can the administrator use a restore to fix the errors in static routing?

  A. The restore is not possible because the backup file does not have the same build number (version).

  B. The restore is done by selecting Snapshot Management from the boot menu of GAiA.

  C. The restore can be done easily by the command restore and copying netconf.C from the production environment.

  D. A backup cannot be restored, because the binary files are missing.

  Correct Answer: C

• Question 129:

  What is the syntax for uninstalling a package using newpkg?

  A. -u

  B. -i

  C. -S

  D. newpkg CANNOT be used to uninstall a package

  Correct Answer: D

• Question 130:

  As you review this Security Policy, what changes could you make to accommodate Rule 4? Exhibit:

  

  A. Remove the service HTTP from the column Service in Rule 4.

  B. Modify the column VPN in Rule 2 to limit access to specific traffic.

  C. Nothing at all

  D. Modify the columns Source or Destination in Rule 4.

  Correct Answer: B