1. Home
  2. CheckPoint
  3. 156-215.77

Check Point Certified Security Administrator

Exam Details

  • Exam Code
    :156-215.77
  • Exam Name
    :Check Point Certified Security Administrator
  • Certification
    :Checkpoint Certifications
  • Vendor
    :CheckPoint
  • Total Questions
    :60 Q&As
  • Last Updated
    :Dec 13, 2024

CheckPoint Checkpoint Certifications 156-215.77 Questions & Answers

  • Question 291:

    Many companies have defined more than one administrator. To increase security, only one administrator should be able to install a Rule Base on a specific Firewall. How do you configure this?

    A. Define a permission profile in SmartDashboard with read/write privileges, but restrict it to all other firewalls by placing them in the Policy Targets field. Then, an administrator with this permission profile cannot install a policy on any Firewall not listed here.

    B. Put the one administrator in an Administrator group and configure this group in the specific Firewall object in Advanced > Permission to Install.

    C. In the object General Properties representing the specific Firewall, go to the Software Blades product list and select Firewall. Right-click in the menu, select Administrator to Install to define only this administrator.

    D. Right-click on the object representing the specific administrator, and select that Firewall in Policy Targets.

  • Question 292:

    Exhibit:

    You plan to create a backup of the rules, objects, policies, and global properties from an R77 Security Management Server. Which of the following backup and restore solutions can you use?

    A. 2, 4, and 5

    B. 1, 2, 3, 4, and 5

    C. 1, 2, and 3

    D. 1, 3, and 4

  • Question 293:

    Which Check Point address translation method is necessary if you want to connect from a host on the Internet via HTTP to a server with a reserved (RFC 1918) IP address on your DMZ?

    A. Dynamic Source Address Translation

    B. Hide Address Translation

    C. Port Address Translation

    D. Static Destination Address Translation

  • Question 294:

    Message digests use which of the following?

    A. DES and RC4

    B. IDEA and RC4

    C. SSL and MD4

    D. SHA-1 and MD5

  • Question 295:

    When doing a Stand-Alone Installation, you would install the Security Management Server with which other Check Point architecture component?

    A. None, Security Management Server would be installed by itself.

    B. SmartConsole

    C. SecureClient

    D. Security Gateway

  • Question 296:

    Which NAT option applicable for Automatic NAT applies to Manual NAT as well?

    A. Allow bi-directional NAT

    B. Automatic ARP configuration

    C. Translate destination on client-side

    D. Enable IP Pool NAT

  • Question 297:

    Which of the following R77 SmartView Tracker views will display a popup warning about performance implications on the Security Gateway?

    A. All Records Query

    B. Account Query

    C. Active Tab

    D. Audit Tab

  • Question 298:

    What is the default setting when you use NAT?

    A. Destination Translated on Server side

    B. Destination Translated on Client side

    C. Source Translated on both sides

    D. Source Translated on Client side

  • Question 299:

    What is the officially accepted diagnostic tool for IP Appliance Support?

    A. ipsoinfo

    B. CST

    C. uag-diag

    D. cpinfo

  • Question 300:

    You just installed a new Web server in the DMZ that must be reachable from the Internet. You create a manual Static NAT rule as follows:

    SourcE. Any || Destination: web_public_IP || ServicE. Any || Translated SourcE. original || Translated Destination: web_private_IP || ServicE. Original

    "web_public_IP? is the node object that represents the new Web server's public IP address. "web_private_IP? is the node object that represents the new Web site's private IP address. You enable all settings from Global Properties > NAT.

    When you try to browse the Web server from the Internet you see the error "page cannot be displayed?. Which of the following is NOT a possible reason?

    A. There is no Security Policy defined that allows HTTP traffic to the protected Web server.

    B. There is no ARP table entry for the protected Web server's public IP address.

    C. There is no route defined on the Security Gateway for the public IP address to the Web server's private IP address.

    D. There is no NAT rule translating the source IP address of packets coming from the protected Web server.

Related Exams:

Tips on How to Prepare for the Exams

Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only CheckPoint exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your 156-215.77 exam preparations and CheckPoint certification application, do not hesitate to visit our Vcedump.com to find your solutions here.