1. Home
  2. CheckPoint
  3. 156-315.77

CheckPoint 156-315.77 Online Practice Questions and Exam Preparation

156-315.77 Exam Details

  • Exam Code
    :156-315.77
  • Exam Name
    :Check Point Certified Security Expert
  • Certification
    :Checkpoint Certifications
  • Vendor
    :CheckPoint
  • Total Questions
    :735 Q&As
  • Last Updated
    :Dec 13, 2024

CheckPoint 156-315.77 Online Questions & Answers

  • Question 301:

    Given the following protection detailed and the enforcing gateways list, is the Tool many DNS queries with the RD flag set protection enabled on the Gateway R76?

    Please choose the answer with the correct justification.

    A. yes because it is set to prevent on the Default_Protrction, which R76gateway has applied.
    B. No because the protection is only supported on IPS-1 Sensor
    C. No enough information to determine one way or other
    D. No, because the Too many DNS queries with the flag set protection is not a valid protection in R76

  • Question 302:

    In Company XYZ, the DLP Administrator defined a new Keywords Data Type that contains a list of secret project names; i.e., Ayalon, Yarkon, Yarden. The threshold is set to At least 2 keywords or phrases. Based on this information, which of the following scenarios will be a match to the Rule Base?

    A. A PDF file that contains the following text Yarkon1 can be the code name for the new product. Yardens list of protected sites
    B. An MS Excel file that contains the following text Mort resources for Yarkon project.. Are you certain this is about Yarden?
    C. A word file that contains the following text will match: Ayalon ayalon AYALON
    D. A password protected MS Excel file that contains the following text Ayalon Yarkon Yarden

  • Question 303:

    Check Point recommends that you back up systems running Check Point products. Run your back ups during maintenance windows to limit disruptions to services, improve CPU usage, and simplify time allotment. Which back up method does Check Point recommend anytime outside a maintenance window?

    A. backup
    B. migrate export
    C. backup export
    D. snapshot

  • Question 304:

    Your customer asks you about the Performance Pack. You explain to him that a Performance Pack is a software acceleration product which improves the performance of the Security Gateway. There are two ways to enable or disable this

    acceleration. The first one is to use the command cpconfig (see the Figure 1).

    The second one is to use the command fwaccel on off (see the Figure 2).

    What is the difference between those two commands?

    A. The command cpconfig works on the Security Platform only. The command fwaccel can be used on all platforms.
    B. The fwaccel command determines the default setting. The command cpconfig can dynamically change the setting, but after the reboot it reverts to the default setting.
    C. Both commands have the same function.
    D. The cpconfig command enables acceleration. The command fwaccel can dynamically change the setting, but after the reboot it reverts to the default setting.

  • Question 305:

    Which of the following commands can be used to bind a NIC to a single processor when using a Performance Pack onSecure Platform?

    A. sim affinity
    B. splat proc
    C. set proc
    D. fw fat path nic

  • Question 306:

    Refer to Exhibit below: Match the ClusterXL modes with their configurations.

    A. A - 3, B - 2, C - 4, D - 1
    B. A - 2, B - 3, C - 1, D - 4
    C. A - 2, B - 3, C - 4, D - 1
    D. A - 3, B - 2, C - 1, D - 4

  • Question 307:

    Which operating system(s) support(s) unnumbered VPN Tunnel Interfaces (VTIs) for route- based VPN's?

    A. Solaris 9 and higher
    B. IPSO 3.9 and higher
    C. Red Hat Linux
    D. Secure Platformfor NGX and higher

  • Question 308:

    In a UNIX environment,Smart ReporterData Base settings could be modified in:

    A. $FWDIR/Eventia/conf/ini.C
    B. $RTDIR/Database/conf/my.cnf
    C. $CPDIR/Database/conf/conf.C
    D. $ERDIR/conf/my.cnf

  • Question 309:

    Control connections between the Security Management Server and the Gateway are not encrypted by the VPN Community. How are these connections secured?

    A. They are encrypted and authenticated using SIC.
    B. They are not encrypted, but are authenticated by the Gateway
    C. They are secured by PPTP
    D. They are not secured.

  • Question 310:

    Which three of the following components are required to get a SmartEvent up and running? 1) SmartEvent SIC 2) SmartEvent Correlation Unit 3) SmartEvent Server 4) SmartEvent Analyzer 5) SmartEvent Client

    A. 2, 3, and 5
    B. 1, 2, and 4
    C. 1, 2, and 3
    D. 3, 4, and 5

Related Exams:

Tips on How to Prepare for the Exams

Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only CheckPoint exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your 156-315.77 exam preparations and CheckPoint certification application, do not hesitate to visit our Vcedump.com to find your solutions here.