CheckPoint 156-215.80 Online Practice Questions and Exam Preparation

CheckPoint 156-215.80 Online Questions & Answers

• Question 151:

  Which SmartConsole component can Administrators use to track changes to the Rule Base?

  A. WebUI
  B. SmartView Tracker
  C. SmartView Monitor
  D. SmartReporter
  B. SmartView Tracker

• Question 152:

  While enabling the Identity Awareness blade the Identity Awareness wizard does not automatically detect the windows domain. Why does it not detect the windows domain?

  A. Security Gateways is not part of the Domain
  B. SmartConsole machine is not part of the domain
  C. SMS is not part of the domain
  D. Identity Awareness is not enabled on Global properties
  B. SmartConsole machine is not part of the domain

• Question 153:

  To fully enable Dynamic Dispatcher on a Security Gateway:

  A. run fw ctl multik set_mode 9 in Expert mode and then reboot
  B. Using cpconfig, update the Dynamic Dispatcher value to "full" under the CoreXL menu
  C. Edit /proc/interrupts to include multik set_mode 1 at the bottom of the file, save, and reboot
  D. run fw ctl multik set_mode 1 in Expert mode and then reboot
  A. run fw ctl multik set_mode 9 in Expert mode and then reboot

• Question 154:

  You have just installed your Gateway and want to analyze the packet size distribution of your traffic with SmartView Monitor.

  

  Unfortunately, you get the message:

  "There are no machines that contain Firewall Blade and SmartView Monitor".

  What should you do to analyze the packet size distribution of your traffic? Give the BEST answer.

  

  A. Purchase the SmartView Monitor license for your Security Management Server.
  B. Enable Monitoring on your Security Management Server.
  C. Purchase the SmartView Monitor license for your Security Gateway.
  D. Enable Monitoring on your Security Gateway.
  D. Enable Monitoring on your Security Gateway.

• Question 155:

  Which of the following Automatically Generated Rules NAT rules have the lowest implementation priority?

  A. Machine Hide NAT
  B. Address Range Hide NAT
  C. Network Hide NAT
  D. Machine Static NAT
  B. Address Range Hide NAT
  C. Network Hide NAT

• Question 156:

  Which command can you use to enable or disable multi-queue per interface?

  A. cpmq set
  B. Cpmqueue set
  C. Cpmq config
  D. Set cpmq enable
  A. cpmq set

• Question 157:

  Which Threat Prevention Software Blade provides protection from malicious software that can infect your network computers?

  A. Anti-Malware
  B. IPS
  C. Anti-bot
  D. Anti-Spam
  C. Anti-bot

• Question 158:

  Which of the following is NOT a type of Endpoint Identity Agent?

  A. Terminal
  B. Light
  C. Full
  D. Custom
  A. Terminal

• Question 159:

  You noticed that CPU cores on the Security Gateway are usually 100% utilized and many packets were dropped. You don't have a budget to perform a hardware upgrade at this time. To optimize drops you decide to use Priority Queues and fully enable Dynamic Dispatcher. How can you enable them?

  A. fw ctl multik dynamic_dispatching on
  B. fw ctl multik dynamic_dispatching set_mode 9
  C. fw ctl multik set_mode 9
  D. fw ctl miltik pq enable
  A. fw ctl multik dynamic_dispatching on

• Question 160:

  Fill in the blank: When a policy package is installed, ________ are also distributed to the target installation Security Gateways.

  A. User and objects databases
  B. Network databases
  C. SmartConsole databases
  D. User databases
  A. User and objects databases