1. Home
  2. CheckPoint
  3. 156-215.77

CheckPoint 156-215.77 Online Practice Questions and Exam Preparation

156-215.77 Exam Details

  • Exam Code
    :156-215.77
  • Exam Name
    :Check Point Certified Security Administrator
  • Certification
    :Checkpoint Certifications
  • Vendor
    :CheckPoint
  • Total Questions
    :358 Q&As
  • Last Updated
    :Dec 13, 2024

CheckPoint 156-215.77 Online Questions & Answers

  • Question 241:

    What port is used for communication to the User Center with SmartUpdate?

    A. CPMI 200
    B. TCP 8080
    C. HTTP 80
    D. HTTPS 443

  • Question 242:

    When translation occurs using automatic Hide NAT, what also happens?

    A. Nothing happens.
    B. The destination is modified.
    C. The destination port is modified.
    D. The source port is modified.

  • Question 243:

    You just installed a new Web server in the DMZ that must be reachable from the Internet.

    You create a manual Static NAT rule as follows:

    SourcE. Any || Destination: web_public_IP || ServicE. Any || Translated SourcE. original || Translated Destination: web_private_IP || ServicE. Original

    "web_public_IP? is the node object that represents the new Web server's public IP address. "web_private_IP? is the node object that represents the new Web site's private IP address. You enable all settings from Global Properties > NAT.

    When you try to browse the Web server from the Internet you see the error "page cannot be displayed?. Which of the following is NOT a possible reason?

    A. There is no Security Policy defined that allows HTTP traffic to the protected Web server.
    B. There is no ARP table entry for the protected Web server's public IP address.
    C. There is no route defined on the Security Gateway for the public IP address to the Web server's private IP address.
    D. There is no NAT rule translating the source IP address of packets coming from the protected Web server.

  • Question 244:

    Which statement is TRUE about implicit rules?

    A. You create them in SmartDashboard.
    B. The Gateway enforces implicit rules that enable outgoing packets only.
    C. Changes to the Security Gateway's default settings do not affect implicit rules.
    D. They are derived from Global Properties and explicit object properties.

  • Question 245:

    Peter is your new Security Administrator. On his first working day, he is very nervous and enters the wrong password three times. His account is locked. What can be done to unlock Peter's account? Give the BEST answer.

    A. You can unlock Peter's account by using the command fwm lock_admin -u Peter on the Security Management Server.
    B. You can unlock Peter's account by using the command fwm unlock_admin -u Peter on the Security Management Server
    C. It is not possible to unlock Peter's account. You have to install the firewall once again or abstain from Peter's help.
    D. You can unlock Peter's account by using the command fwm unlock_admin -u Peter on the Security Gateway.

  • Question 246:

    What is the difference between Standard and Specific Sign On methods?

    A. Standard Sign On allows the user to be automatically authorized for all services that the rule allows. Specific Sign On requires that the user re-authenticate for each service specifically defined in the window Specific Action Properties.
    B. Standard Sign On allows the user to be automatically authorized for all services that the rule allows, but re-authenticate for each host to which he is trying to connect. Specific Sign On requires that the user re-authenticate for each service.
    C. Standard Sign On allows the user to be automatically authorized for all services that the rule allows. Specific Sign On requires that the user re-authenticate for each service and each host to which he is trying to connect.
    D. Standard Sign On requires the user to re-authenticate for each service and each host to which he is trying to connect. Specific Sign On allows the user to sign on only to a specific IP address.

  • Question 247:

    Exhibit:

    You installed Security Management Server on a computer using GAiA in the MegaCorp home office. You use IP address 10.1.1.1. You also installed the Security Gateway on a second GAiA computer, which you plan to ship to another Administrator at a MegaCorp hub office. What is the correct order for pushing SIC certificates to the Gateway before shipping it?

    A. 2, 3, 4, 1, 5
    B. 2, 1, 3, 4, 5
    C. 1, 3, 2, 4, 5
    D. 2, 3, 4, 5, 1

  • Question 248:

    What mechanism does a gateway configured with Identity Awareness and LDAP initially use to communicate with a Windows 2003 or 2008 server?

    A. WMI
    B. CIFS
    C. RCP
    D. LDAP

  • Question 249:

    Which command allows Security Policy name and install date verification on a Security Gateway?

    A. fw show policy
    B. fw stat -l
    C. fw ctl pstat -policy
    D. fw ver -p

  • Question 250:

    What action can be performed from SmartUpdate R77?

    A. upgrade_export
    B. fw stat -l
    C. cpinfo
    D. remote_uninstall_verifier

Related Exams:

Tips on How to Prepare for the Exams

Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only CheckPoint exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your 156-215.77 exam preparations and CheckPoint certification application, do not hesitate to visit our Vcedump.com to find your solutions here.