1. Home
  2. CheckPoint
  3. 156-315.77

CheckPoint 156-315.77 Online Practice Questions and Exam Preparation

156-315.77 Exam Details

  • Exam Code
    :156-315.77
  • Exam Name
    :Check Point Certified Security Expert
  • Certification
    :Checkpoint Certifications
  • Vendor
    :CheckPoint
  • Total Questions
    :735 Q&As
  • Last Updated
    :Dec 13, 2024

CheckPoint 156-315.77 Online Questions & Answers

  • Question 361:

    In a zero downtime firewall cluster environment, what command syntax do you run to avoid switching problems around the cluster for command cphaconf?

    A. set_ccp broadcast

  • Question 362:

    You find that Gateway fw2 can NOT be added to the cluster object.

    What are possible reasons for that?

    A. 2 or 3
    B. 1 or 2
    C. 1 or 3
    D. All

  • Question 363:

    You set up a mesh VPN Community, so your internal networks can access your partner's network, and vice versa. Your Security Policy encrypts only FTP and HTTP traffic through a VPN tunnel. All other traffic among your internal and

    partner networks is sent in clear text.

    How do you configure the VPN Community?

    A. Disable "accept all encrypted traffic", and put FTP and HTTP in the Excluded services in the Community object. Add a rule in the Security Policy for services FTP and http, with the Community object in the VPN field.
    B. Disable "accept all encrypted traffic" in the Community, and add FTP and HTTP services to the Security Policy, with that Community object in the VPN field.
    C. Enable "accept all encrypted traffic", but put FTP and HTTP in the Excluded services in the Community. Add a rule in the Security Policy, with services FTP and http, and the Community object in the VPN field.
    D. Put FTP and HTTP in the Excluded services in the Community object. Then add a rule in the Security Policy to allow Any as the service, with the Community object in the VPN field.

  • Question 364:

    Which of the following TCP port numbers is used to connect the VPN-1 Gateway to the Content Vector Protocol (CVP) server?

    A. 18182
    B. 18180
    C. 18181
    D. 7242
    E. 1456

  • Question 365:

    If both domain-based and route-based VPN's are configured, which will take precedence?

    A. Must be chosen/configured manually by the Administrator in the Policy > Global Properties
    B. Must be chosen/configured manually by the Administrator in the VPN community object
    C. Domain-based
    D. Route-based

  • Question 366:

    Which procedure will create an Internal User?

    A. In the Users and Administrators tab, right click Users and click SSL VPN User
    B. In the General Properties of the gateway, click the SSL VPN check box. The SSL VPN Blade Wizard will launch and Step 2 will allow adding new users who will be imported from a RADIUS server.
    C. From the SSL VPN tab, click Users and Authentication I Internal Users I Users and click New User I Default
    D. In the Users and Administrators tab, click User Groups I Clientless-vpn-user and add the SSL VPN user to the Clientless-vpn-user group

  • Question 367:

    Which of the following is a supported deployment for Connectra?

    A. IPSO 4.9 build 88
    B. VMWare ESX
    C. Solaris 10
    D. Windows server 2007

  • Question 368:

    Steve tries to configure Directional VPN Rule Match in the Rule Base. But the Match column does not have the option to see the Directional Match. Steve sees the following screen. What is the problem?

    A. Steve must enable directional_match(true) in the objects_5_0.C file on SmartCenter Server.
    B. Steve must enable Advanced Routing on each Security Gateway.
    C. Steve must enable VPN Directional Match on the VPN Advanced screen, in Global properties.
    D. Steve must enable a dynamic routing protocol, such as OSPF, on the Gateways.
    E. Steve must enable VPN Directional Match on the gateway object's VPN tab.

  • Question 369:

    Which of the following is TRUE concerning numbered VPN Tunnel Interfaces (VTIs)?

    A. VTIs can use an already existing physical-interface IP address
    B. VTIs cannot share IP addresses
    C. VTIs are supported onSecure PlatformPro
    D. VTIs are assigned only local addresses, not remote addresses

  • Question 370:

    You plan to install a VPN-1 Pro Gateway for VPN-1 NGX at your company's headquarters. You have a single Sun SPARC Solaris 9 machine for VPN-1 Pro enterprise implementation. You need this machine to inspect traffic and keep configuration files. Which Check Point software package do you install?

    A. VPN-1 Pro Gateway and primary SmartCenter Server
    B. Policy Server and primary SmartCenter Server
    C. ClusterXL and SmartCenter Server
    D. VPN-1 Pro Gateway
    E. SmartCenter Server

Related Exams:

Tips on How to Prepare for the Exams

Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only CheckPoint exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your 156-315.77 exam preparations and CheckPoint certification application, do not hesitate to visit our Vcedump.com to find your solutions here.