CheckPoint 156-215.77 Online Practice Questions and Exam Preparation

CheckPoint 156-215.77 Online Questions & Answers

• Question 171:

  Which Check Point address translation method is necessary if you want to connect from a host on the Internet via HTTP to a server with a reserved (RFC 1918) IP address on your DMZ?

  A. Dynamic Source Address Translation
  B. Hide Address Translation
  C. Port Address Translation
  D. Static Destination Address Translation
  D. Static Destination Address Translation

• Question 172:

  You are about to integrate RSA SecurID users into the Check Point infrastructure. What kind of users are to be defined via SmartDashboard?

  A. A group with generic user
  B. All users
  C. LDAP Account Unit Group
  D. Internal user Group
  A. A group with generic user

• Question 173:

  A Security Policy has several database versions. What configuration remains the same no matter which version is used?

  A. Objects_5_0.C
  B. Internal Certificate Authority (ICA) certificate
  C. Rule Bases_5_0.fws
  D. fwauth.NDB
  B. Internal Certificate Authority (ICA) certificate

• Question 174:

  Which command gives an overview of your installed licenses?

  A. cplicense
  B. showlic
  C. fw lic print
  D. cplic print
  D. cplic print

• Question 175:

  Your Security Management Server fails and does not reboot. One of your remote Security Gateways managed by the Security Management Server reboots. What occurs with the remote Gateway after reboot?

  A. Since the Security Management Server is not available, the remote Gateway cannot fetch the Security Policy. Therefore, all traffic is allowed through the Gateway.
  B. Since the Security Management Server is not available, the remote Gateway cannot fetch the Security Policy. Therefore, no traffic is allowed through the Gateway.
  C. The remote Gateway fetches the last installed Security Policy locally and passes traffic normally. The Gateway will log locally, since the Security Management Server is not available.
  D. Since the Security Management Server is not available, the remote Gateway uses the local Security Policy, but does not log traffic.
  C. The remote Gateway fetches the last installed Security Policy locally and passes traffic normally. The Gateway will log locally, since the Security Management Server is not available.

• Question 176:

  You are the Security Administrator for MegaCorp and would like to view network activity using SmartReporter. You select a standard predefined report. As you can see here, you can select the london Gateway.

  

  When you attempt to configure the Express Report, you are unable to select this Gateway.

  

  What is the reason for this behavior? Give the BEST answer.

  A. You must enable the Eventia Express Mode on the london Gateway.
  B. You have the license for Eventia Reporter in Standard mode only.
  C. You must enable the Express Mode inside Eventia Reporter.
  D. You must enable Monitoring in the london Gateway object's General Properties.
  D. You must enable Monitoring in the london Gateway object's General Properties.

• Question 177:

  In which Rule Base can you implement an Access Role?

  A. DLP
  B. Mobile Access
  C. IPS
  D. Firewall
  D. Firewall

• Question 178:

  How does the button Get Address, found on the Host Node Object > General Properties page retrieve the address?

  A. Route Table
  B. SNMP Get
  C. Address resolution (ARP, RARP)
  D. Name resolution (hosts file, DNS, cache)
  D. Name resolution (hosts file, DNS, cache)

• Question 179:

  The Security Gateway is installed on GAiA R77 The default port for the Web User Interface is _______.

  A. TCP 18211
  B. TCP 443
  C. TCP 4433
  D. TCP 257
  B. TCP 443

• Question 180:

  When configuring anti-spoofing on the Security Gateway object interfaces, which of the following is NOT a valid R77 topology configuration?

  A. External
  B. Any
  C. Specific
  D. Not Defined
  B. Any