CheckPoint 156-215.81.20 Online Practice Questions and Exam Preparation

CheckPoint 156-215.81.20 Online Questions & Answers

• Question 391:

  Which tool provides a list of trusted files to the administrator so they can specify to the Threat Prevention blade that these files do not need to be scanned or analyzed?

  A. ThreatWiki
  B. Whitelist Files
  C. AppWiki
  D. IPS Protections
  A. ThreatWiki

  ---

  Explanation/Reference:

  Reference: https://sc1.checkpoint.com/documents/R77/CP_R77_ThreatPrevention_WebAdmin/82209.htm

• Question 392:

  Which of the following is NOT an integral part of VPN communication within a network?

  A. VPN key
  B. VPN community
  C. VPN trust entities
  D. VPN domain
  A. VPN key

  ---

  Explanation/Reference:

  1.

  VPN key (to not be confused with pre-shared key that is used for authentication).

  2.

  VPN trust entities, such as a Check Point Internal Certificate Authority (ICA). The ICA is part of the Check Point suite used for creating SIC trusted connection between Security Gateways, authenticating administrators and third party servers. The ICA provides certificates for internal Security Gateways and remote access clients which negotiate the VPN link.

  3.

  VPN Domain - A group of computers and networks connected to a VPN tunnel by one VPN gateway that handles encryption and protects the VPN Domain members.

  4.

  VPN Community - A named collection of VPN domains, each protected by a VPN gateway.

  Reference: http://sc1.checkpoint.com/documents/R77/CP_R77_VPN_AdminGuide/13868.htm

• Question 393:

  There are 4 ways to use the Management API for creating host object with R80 Management API. Which one is NOT correct?

  A. Using Web Services
  B. Using Mgmt_cli tool
  C. Using CLISH
  D. Using SmartConsole GUI console
  C. Using CLISH

  ---

  Explanation/Reference:

  Reference: http://dl3.checkpoint.com/paid/29/29532b9eec50d0a947719ae631f640d0/CP_R80_CheckPoint_API_ReferenceGuide.pdf?HashKey=1517088487_4c0acda205460a92f44c83d399826a7bandxtn=.pdf

• Question 394:

  Which command is used to obtain the configuration lock in Gaia?

  A. Lock database override
  B. Unlock database override
  C. Unlock database lock
  D. Lock database user
  A. Lock database override

  ---

  Explanation/Reference:

  Obtaining a Configuration Lock

  1.

  lock database override

  2.

  unlock database

  Reference: https://sc1.checkpoint.com/documents/R76/CP_R76_Gaia_WebAdmin/75697.htm#o73091

• Question 395:

  How do you configure an alert in SmartView Monitor?

  A. An alert cannot be configured in SmartView Monitor.
  B. By choosing the Gateway, and Configure Thresholds.
  C. By right-clicking on the Gateway, and selecting Properties.
  D. By right-clicking on the Gateway, and selecting System Information.
  B. By choosing the Gateway, and Configure Thresholds.

• Question 396:

  Which of the following is NOT a valid deployment option for R80?

  A. All-in-one (stand-alone)
  B. CloudGuard
  C. Distributed
  D. Bridge Mode
  B. CloudGuard

  ---

  Explanation/Reference:

• Question 397:

  In the Check Point three-tiered architecture, which of the following is NOT a function of the Security Management Server?

  A. Verify and compile Security Policies.
  B. Display policies and logs on the administrator's workstation.
  C. Store firewall logs to hard drive storage.
  D. Manage the object database.
  B. Display policies and logs on the administrator's workstation.

• Question 398:

  You want to establish a VPN, using certificates. Your VPN will exchange certificates with an external partner. Which of the following activities sh you do first?

  A. Create a new logical-server object to represent your partner's CA
  B. Exchange exported CA keys and use them to create a new server object to represent your partner's Certificate Authority (CA)
  C. Manually import your partner's Certificate Revocation List.
  D. Manually import your partner's Access Control List.
  B. Exchange exported CA keys and use them to create a new server object to represent your partner's Certificate Authority (CA)

• Question 399:

  Which of the following describes how Threat Extraction functions?

  A. Detect threats and provides a detailed report of discovered threats
  B. Proactively detects threats
  C. Delivers file with original content
  D. Delivers PDF versions of original files with active content removed
  B. Proactively detects threats

• Question 400:

  Vanessa is a Firewall administrator. She wants to test a backup of her company's production Firewall cluster Dallas_GW. She has a lab environment that is identical to her production environment. She decided to restore production backup via SmartConsole in lab environment. Which details she need to fill in System Restore window before she can click OK button and test the backup?

  A. Server, SCP, Username, Password, Path, Comment, Member
  B. Server, TFTP, Username, Password, Path, Comment, All Members
  C. Server, Protocol, Username, Password, Path, Comment, All Members
  D. Server, Protocol, Username, Password, Path, Comment, Member
  C. Server, Protocol, Username, Password, Path, Comment, All Members