1. Home
  2. CheckPoint
  3. 156-315.77

CheckPoint 156-315.77 Online Practice Questions and Exam Preparation

156-315.77 Exam Details

  • Exam Code
    :156-315.77
  • Exam Name
    :Check Point Certified Security Expert
  • Certification
    :Checkpoint Certifications
  • Vendor
    :CheckPoint
  • Total Questions
    :735 Q&As
  • Last Updated
    :Dec 13, 2024

CheckPoint 156-315.77 Online Questions & Answers

  • Question 381:

    Which statement about LDAP and Active Directory (AD) with SSL VPN is TRUE?

    A. SSL VPN does not support LDAP password remediation.
    B. SSL VPN is capable of administering or creating users and groups directly on an LDAP server.
    C. SSL VPN never stores the user records of LDAP/AD groups.
    D. By default. SSL VPN sends username and password credentials to LDAP servers in UTF-8 encoding

  • Question 382:

    In which ClusterXL Load Sharing mode, does the pivot machine get chosen automatically by ClusterXL?

    A. Hot Standby Load Sharing
    B. Unicast Load Sharing
    C. Multicast Load Sharing
    D. CCP Load Sharing

  • Question 383:

    Can the smallest appliance handle all Blades simultaneously?

    A. Depends on the number of protected clients and throughput.
    B. Depends on number of concurrent sessions.
    C. Firewall throughput is the only relevant factor.
    D. It depends on required SPU for customer environment.

  • Question 384:

    All of the following are used by the DLP engine to match a message during a scan, EXCEPT:

    A. Message Body
    B. Protocol
    C. Data Type
    D. Destination

  • Question 385:

    When upgrading a cluster in Full Connectivity Mode, the first thing you must do is see if all cluster members have the same products installed. Which command should you run?

    A. fw fcu
    B. cphaprob fcustat
    C. cpconfig
    D. fw ctl conn -a

  • Question 386:

    By default Check Point High Availability components send updates about their state every:

    A. 5 seconds.
    B. 0.5 second.
    C. 0.1 second.
    D. 1 second.

  • Question 387:

    How do you run "CPSIZEME" on SPLAT?

    A. [expert@HostName]#>./cpsizeme -h
    B. [expert@HostName]# ./cpsizeme -R
    C. This is not possible on SPLAT
    D. [expert@HostName]# ./cpsizeme

  • Question 388:

    You need to verify the effectiveness of your IPS configuration for your Web server farm. You have a colleague run penetration tests to confirm that the Web servers are secure against traffic hijacks. Of the following, which would be the best configuration to protect from a traffic hijack attempt?

    A. Enable the Web intelligence > SQL injection setting.
    B. Activate the Cross-Site Scripting property.
    C. Configure TCP defenses such as Small PMTU size.
    D. Create resource objects for the Web farm servers and configure rules for the Web farm.

  • Question 389:

    Organizations are sometimes faced with the need to locate cluster members in different geographic locations that are distant from each other. A typical example is replicated data centers whose location is widely separated for disaster recovery purposes. What are the restrictions of this solution?

    A. There are no restrictions.
    B. There is one restriction: The synchronization network must guarantee no more than 150 ms latency (ITU Standard G.114).
    C. There is one restriction: The synchronization network must guarantee no more than 100 ms latency.
    D. There are two restrictions: 1. The synchronization network must guarantee no more than 100ms latency and no more than 5% packet loss. 2. The synchronization network may only include switches and hubs.

  • Question 390:

    Which of the following is TRUE concerning unnumbered VPN Tunnel Interfaces (VTIs)?

    A. They are only supported on the IPSO Operating System.
    B. VTIs cannot be assigned a proxy interface.
    C. VTIs can only be physical, not loopback.
    D. Local IP addresses are not configured, remote IP addresses are configured.

Related Exams:

Tips on How to Prepare for the Exams

Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only CheckPoint exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your 156-315.77 exam preparations and CheckPoint certification application, do not hesitate to visit our Vcedump.com to find your solutions here.