CheckPoint Checkpoint Certifications 156-215.81.20 Questions & Answers

• Question 181:

  Which message indicates IKE Phase 2 has completed successfully?

  A. Quick Mode Complete

  B. Aggressive Mode Complete

  C. Main Mode Complete

  D. IKE Mode Complete

  Correct Answer: A

• Question 182:

  Administrator Dave logs into R80 Management Server to review and makes some rule changes. He notices that there is a padlock sign next to the DNS rule in the Rule Base.

  

  What is the possible explanation for this?

  A. DNS Rule is using one of the new feature of R80 where an administrator can mark a rule with the padlock icon to let other administrators know it is important.

  B. Another administrator is logged into the Management and currently editing the DNS Rule.

  C. DNS Rule is a placeholder rule for a rule that existed in the past but was deleted.

  D. This is normal behavior in R80 when there are duplicate rules in the Rule Base.

  Correct Answer: B

• Question 183:

  Fill in the blank: When tunnel test packets no longer invoke a response, SmartView Monitor displays _____________ for the given VPN tunnel.

  A. Down

  B. No Response

  C. Inactive

  D. Failed

  Correct Answer: A

  Reference: https://sc1.checkpoint.com/documents/R77/CP_R77_VPN_AdminGuide/html_frameset.htm?topic=documents/R77/CP_R77_VPN_AdminGuide/14018

• Question 184:

  Which of the following is the most secure means of authentication?

  A. Password

  B. Certificate

  C. Token

  D. Pre-shared secret

  Correct Answer: B

• Question 185:

  What is the BEST command to view configuration details of all interfaces in Gaia CLISH?

  A. ifconfig -a

  B. show interfaces

  C. show interfaces detail

  D. show configuration interface

  Correct Answer: D

• Question 186:

  Fill in the blank: Authentication rules are defined for ____________.

  A. User groups

  B. Users using UserCheck

  C. Individual users

  D. All users in the database

  Correct Answer: A

  Reference: https://sc1.checkpoint.com/documents/R76/CP_R76_SGW_WebAdmin/6721.htm

• Question 187:

  Which tool provides a list of trusted files to the administrator so they can specify to the Threat Prevention blade that these files do not need to be scanned or analyzed?

  A. ThreatWiki

  B. Whitelist Files

  C. AppWiki

  D. IPS Protections

  Correct Answer: A

  Reference: https://sc1.checkpoint.com/documents/R77/CP_R77_ThreatPrevention_WebAdmin/82209.htm

• Question 188:

  Which of the following is an authentication method used for Identity Awareness?

  A. SSL

  B. Captive Portal

  C. PKI

  D. RSA

  Correct Answer: B

• Question 189:

  The SIC Status "Unknown" means

  A. There is connection between the gateway and Security Management Server but it is not trusted.

  B. The secure communication is established.

  C. There is no connection between the gateway and Security Management Server.

  D. The Security Management Server can contact the gateway, but cannot establish SIC.

  Correct Answer: C

  SIC Status

  After the gateway receives the certificate issued by the ICA, the SIC status shows if the Security Management Server can communicate securely with this gateway:

  Communicating - The secure communication is established.

  Unknown - There is no connection between the gateway and Security Management Server.

  Not Communicating - The Security Management Server can contact the gateway, but cannot establish SIC. A message shows more information. Reference: https://sc1.checkpoint.com/documents/R80/CP_R80_SecMGMT/ html_frameset.htm?topic=documents/R80/CP_R80_SecMGMT/125443

• Question 190:

  What is a reason for manual creation of a NAT rule?

  A. In R80 all Network Address Translation is done automatically and there is no need for manually defined NAT-rules.

  B. Network Address Translation of RFC1918-compliant networks is needed to access the Internet.

  C. Network Address Translation is desired for some services, but not for others.

  D. The public IP-address is different from the gateway's external IP

  Correct Answer: D