1. Home
  2. CheckPoint
  3. 156-215.77

CheckPoint 156-215.77 Online Practice Questions and Exam Preparation

156-215.77 Exam Details

  • Exam Code
    :156-215.77
  • Exam Name
    :Check Point Certified Security Administrator
  • Certification
    :Checkpoint Certifications
  • Vendor
    :CheckPoint
  • Total Questions
    :358 Q&As
  • Last Updated
    :Dec 13, 2024

CheckPoint 156-215.77 Online Questions & Answers

  • Question 221:

    The INSPECT engine inserts itself into the kernel between which two OSI model layers?

    A. Session and Transport
    B. Physical and Data
    C. Presentation and Application
    D. Datalink and Network

  • Question 222:

    What happens when you open the Gateway object window Trusted Communication and press and confirm Reset? Exhibit:

    A. Sic will be reset on the Gateway only.
    B. The Gateway certificate will be revoked on the Gateway only.
    C. The Gateway certificate will be revoked on the Security Managment Server only.
    D. The Gateway certificate will be revoked on the Security Management Server and SIC will be reset on the Gateway.

  • Question 223:

    Several Security Policies can be used for different installation targets. The Firewall protecting Human Resources' servers should have its own Policy Package. These rules must be installed on this machine and not on the Internet Firewall. How can this be accomplished?

    A. A Rule Base is always installed on all possible targets. The rules to be installed on a Firewall are defined by the selection in the Rule Base row Install On.
    B. When selecting the correct Firewall in each line of the Rule Base row Install On, only this Firewall is shown in the list of possible installation targets after selecting Policy > Install on Target.
    C. In the menu of SmartDashboard, go to Policy > Policy Installation Targets and select the correct firewall via Specific Targets.
    D. A Rule Base can always be installed on any Check Point Firewall object. It is necessary to select the appropriate target directly after selecting Policy > Install on Target.

  • Question 224:

    SmartView Tracker logs the following Security Administrator activities, EXCEPT: A. Object creation, deletion, and editing

    B. Tracking SLA compliance
    C. Administrator login and logout
    D. Rule Base changes

  • Question 225:

    Which do you configure to give remote access VPN users a local IP address?

    A. Encryption domain pool
    B. NAT pool
    C. Office mode IP pool
    D. Authentication pool

  • Question 226:

    While in SmartView Tracker, Brady has noticed some very odd network traffic that he thinks could be an intrusion. He decides to block the traffic for 60 minutes, but cannot remember all the steps. What is the correct order of steps needed to

    set up the block?

    1) Select Active Mode tab in SmartView Tracker.

    2) Select Tools > Block Intruder.

    3) Select Log Viewing tab in SmartView Tracker.

    4) Set Blocking Timeout value to 60 minutes.

    5) Highlight connection that should be blocked.

    A. 1, 2, 5, 4
    B. 3, 2, 5, 4
    C. 1, 5, 2, 4
    D. 3, 5, 2, 4

  • Question 227:

    Which Security Gateway R77 configuration setting forces the Client Authentication authorization time-out to refresh, each time a new user is authenticated? The:

    A. Time properties, adjusted on the user objects for each user, in the Client Authentication rule Source.
    B. IPS > Application Intelligence > Client Authentication > Refresh User Timeout option enabled.
    C. Refreshable Timeout setting, in Client Authentication Action Properties > Limits.
    D. Global Properties > Authentication parameters, adjusted to allow for Regular Client Refreshment.

  • Question 228:

    You are MegaCorp's Security Administrator. There are various network objects which must be NATed. Some of them use the Automatic Hide NAT method, while others use the Automatic Static NAT method. What is the rule order if both methods are used together? Give the BEST answer.

    A. The Administrator decides the rule order by shifting the corresponding rules up and down.
    B. The Static NAT rules have priority over the Hide NAT rules and the NAT on a node has priority over the NAT on a network or an address range.
    C. The Hide NAT rules have priority over the Static NAT rules and the NAT on a node has priority over the NAT on a network or an address range.
    D. The rule position depends on the time of their creation. The rules created first are placed at the top; rules created later are placed successively below the others.

  • Question 229:

    How many packets are required for IKE Phase 2?

    A. 12
    B. 2
    C. 6
    D. 3

  • Question 230:

    Your users are defined in a Windows 2008 R2 Active Directory server. You must add LDAP users to a Client Authentication rule. Which kind of user group do you need in the Client Authentication rule in R77?

    A. External-user group
    B. LDAP group
    C. A group with a generic user
    D. All Users

Related Exams:

Tips on How to Prepare for the Exams

Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only CheckPoint exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your 156-215.77 exam preparations and CheckPoint certification application, do not hesitate to visit our Vcedump.com to find your solutions here.