Which tool allows you to monitor the top bandwidth on smart console?
A. Smart Event
B. Gateways and Servers Tab
C. SmartView Monitor
D. Logs and Monitoring
Where can alerts be viewed?
A. Alerts can be seen in SmartView Monitor.
B. Alerts can be seen in SmartUpdate.
C. Alerts can be seen in the Threat Prevention policy.
D. Alerts can be seen from the CLI of the gateway.
Which product correlates logs and detects security threats, providing a centralized display of potential attack patterns from all network devices?
A. SmartView Monitor
B. SmartEvent
C. SmartDashboard
D. SmartUpdate
In the Check Point Security Management Architecture, which component(s) can store logs?
A. Security Management Server and Security Gateway
B. SmartConsole
C. SmartConsole and Security Management Server
D. Security Management Server
Which of the following is NOT a tracking log option in R81.x?
A. Full Log
B. Log
C. Detailed Log
D. Extended Log
What makes log queries faster?
A. Size of physical memory on the log server.
B. Logs are stored in the management server instead of a separate log server.
C. Indexing Engine indexes logs for faster search results.
D. Optimized log query where SmartConsole queries logs directly from the Security Gateway.
Which information is included in the "Extended Log" tracking option, but is not included in the "Log" tracking option?
A. data type information
B. application information
C. file attributes
D. destination port
How many layers make up the TCP/IP model?
A. 6
B. 4
C. 7
D. 2
What is the user ID of a user that have all the privileges of a root user?
A. User ID 99
B. User ID 1
C. User ID 2
D. User ID 0
In SmartEvent, a correlation unit (CU) is used to do what?
A. Receive firewall and other software blade logs in a region and forward them to the primary log server.
B. Collect security gateway logs, index the logs and then compress the logs.
C. Send SAM block rules to the firewalls during a DOS attack.
D. Analyze log entries and identify events.
Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only CheckPoint exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your 156-215.81.20 exam preparations and CheckPoint certification application, do not hesitate to visit our Vcedump.com to find your solutions here.