1. Home
  2. CheckPoint
  3. 156-215.77

Check Point Certified Security Administrator

Exam Details

  • Exam Code
    :156-215.77
  • Exam Name
    :Check Point Certified Security Administrator
  • Certification
    :CCSA R77
  • Vendor
    :CheckPoint
  • Total Questions
    :388 Q&As
  • Last Updated
    :May 09, 2024

CheckPoint CCSA R77 156-215.77 Questions & Answers

  • Question 341:

    Your perimeter Security Gateway's external IP is 200.200.200.3. Your network diagram shows:

    Required. Allow only network 192.168.10.0 and 192.168.20.0 to go out to the Internet, using

    200.200.200.5.

    The local network 192.168.1.0/24 needs to use 200.200.200.3 to go out to the Internet.

    Assuming you enable all the settings in the NAT page of Global Properties, how could you achieve these

    requirements?

    A. Create network objects for 192.168.10.0/24 and 192.168.20.0/24. Enable Hide NAT on both network objects, using 200.200.200.5 as hiding IP address. Add an ARP entry for 200.200.200.3 for the MAC

    address of 200.200.200.5.

    B. Create an Address Range object, starting from 192.168.10.1 to 192.168.20.254. Enable Hide NAT on the NAT page of the address range object. Enter Hiding IP address 200.200.200.5. Add an ARP entry for 200.200.200.5 for the MAC address of 200.200.200.3.

    C. Create a network object 192.168.0.0/16. Enable Hide NAT on the NAT page. Enter 200.200.200.5 as the hiding IP address. Add an ARP entry for 200.200.200.5 for the MAC address of 200.200.200.3.

    D. Create two network objects: 192.168.10.0/24 and 192.168.20.0/24. Add the two network objects to a group object. Create a manual NAT rule like the following: Original source - group object; Destination any; Service - any; Translated source - 200.200.200.5; Destination - original; Service - original.

  • Question 342:

    Static NAT connections, by default, translate on which firewall kernel inspection point?

    A. Inbound

    B. Outbound

    C. Post-inbound

    D. Eitherbound

  • Question 343:

    How do you view a Security Administrator's activities with SmartConsole?

    A. Eventia Suite

    B. SmartView Monitor using the Administrator Activity filter

    C. SmartView Tracker in the Management tab

    D. SmartView Tracker in the Network and Endpoint tabs

  • Question 344:

    When translation occurs using automatic Hide NAT, what also happens?

    A. Nothing happens.

    B. The destination is modified.

    C. The destination port is modified.

    D. The source port is modified.

  • Question 345:

    Several Security Policies can be used for different installation targets. The Firewall protecting Human Resources' servers should have its own Policy Package. These rules must be installed on this machine and not on the Internet Firewall. How can this be accomplished?

    A. A Rule Base is always installed on all possible targets. The rules to be installed on a Firewall are defined by the selection in the Rule Base row Install On.

    B. When selecting the correct Firewall in each line of the Rule Base row Install On, only this Firewall is shown in the list of possible installation targets after selecting Policy > Install on Target.

    C. In the menu of SmartDashboard, go to Policy > Policy Installation Targets and select the correct firewall via Specific Targets.

    D. A Rule Base can always be installed on any Check Point Firewall object. It is necessary to select the appropriate target directly after selecting Policy > Install on Target.

  • Question 346:

    Which of the following uses the same key to decrypt as it does to encrypt?

    A. Asymmetric encryption

    B. Dynamic encryption

    C. Certificate-based encryption

    D. Symmetric encryption

  • Question 347:

    Which of the following commands can provide the most complete restoration of a R77 configuration?

    A. upgrade_import

    B. cpinfo -recover

    C. cpconfig

    D. fwm dbimport -p

  • Question 348:

    Which utility allows you to configure the DHCP service on GAiA from the command line?

    A. ifconfig

    B. sysconfig

    C. cpconfig

    D. dhcp_cfg

  • Question 349:

    An internal host initiates a session to the Google.com website and is set for Hide NAT behind the Security Gateway. The initiating traffic is an example of __________.

    A. client side NAT

    B. source NAT

    C. destination NAT

    D. None of these

  • Question 350:

    SmartView Tracker logs the following Security Administrator activities, EXCEPT:

    A. Object creation, deletion, and editing

    B. Tracking SLA compliance

    C. Administrator login and logout

    D. Rule Base changes

Related Exams:

Tips on How to Prepare for the Exams

Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only CheckPoint exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your 156-215.77 exam preparations and CheckPoint certification application, do not hesitate to visit our Vcedump.com to find your solutions here.