1. Home
  2. CheckPoint
  3. 156-315.77

Check Point Certified Security Expert

Exam Details

  • Exam Code
    :156-315.77
  • Exam Name
    :Check Point Certified Security Expert
  • Certification
    :Checkpoint Certifications
  • Vendor
    :CheckPoint
  • Total Questions
    :60 Q&As
  • Last Updated
    :Dec 13, 2024

CheckPoint Checkpoint Certifications 156-315.77 Questions & Answers

  • Question 581:

    You want to verify that your Check Point cluster is working correctly. Which command line tool can you use?

    A. cphastart -status

    B. cphainfo -s

    C. cphaprob state

    D. cphaconf state

  • Question 582:

    How can you view the critical devices on a cluster member in a Cluster XL environment?

    A. cphaprob -ia list

    B. cphaprob -a if

    C. cphaprob -a list

    D. cphaprob -ia if

  • Question 583:

    Review theR76configuration.

    Is it correct for Management High Availability?

    A. No, the Security Management Servers must reside on the same network.

    B. No, the Security Management Servers must be installed on the same operating system.

    C. No, the Security Management Servers do not have the same number of NICs.

    D. No, a R71 Security Management Server cannot run on Red Hat Linux 9.0.

  • Question 584:

    Included in the client's network are some switches, which rely on IGMP snooping. You must find a solution to work with these switches. Which of the following answers does NOT lead to a successful solution?

    A. Set the value of fwha_enable_igmp_snooping module configuration parameter to 1.

    B. Configure static CAMs to allow multicast traffic on specific ports.

    C. ClusterXL supports IGMP snooping by default. There is no need to configure anything.

    D. Disable IGMP registration in switches that rely on IGMP packets

  • Question 585:

    Which of the following is NOT a ClusterXL mode?

    A. Multicast

    B. Legacy

    C. Broadcast

    D. New

  • Question 586:

    Your network includes ClusterXL running Multicast mode on two members, as shown in this topology: Your network is expanding, and you need to add new interfaces:

    10.10.10.1/24 on Member A, and 10.10.10.2/24 on Member B. The virtual IP address for interface 10.10.10.0/24 is 10.10.10.3.

    What is the correct procedure to add these interfaces?

    A. 1. Use the ifconfig command to configure and enable the new interface.

    2.

    Run cpstop and cpstart on both members at the same time.

    3.

    Update the topology in the cluster object for the cluster and both members.

    4.

    Install the Security Policy.

    B. 1. Disable "Cluster membership" from one Gateway via cpconfig.

    2.

    Configure the new interface via sysconfig from the "non-member" Gateway.

    3.

    RE. enable "Cluster membership" on the Gateway.

    4.

    Perform the same step on the other Gateway.

    5.

    Update the topology in the cluster object for the cluster and members.

    6.

    Install the Security Policy.

    C. 1. Run cpstop on one member, and configure the new interface via sysconfig.

    2.

    Run cpstart on the member. Repeat the same steps on another member.

    3.

    Update the new topology in the cluster object for the cluster and members.

    4.

    Install the Security Policy.

    D. 1. Use sysconfig to configure the new interfaces on both members.

    2.

    Update the topology in the cluster object for the cluster and both members.

    3.

    Install the Security Policy.

  • Question 587:

    Which process is responsible for full synchronization in ClusterXL?

    A. fwd on the Security Gateway

    B. fw kernel on the Security Gateway

    C. Clustering on the Security Gateway

    D. cpd on the Security Gateway

  • Question 588:

    Which of the following commands can be used to bind a NIC to a single processor when using a Performance Pack onSecure Platform?

    A. sim affinity

    B. splat proc

    C. set proc

    D. fw fat path nic

  • Question 589:

    When troubleshooting user authentication, you may see the following entries in a debug of the user authentication process. In which order are these messages likely to appear?

    A. make_au, au_auth, au_fetchuser, au_auth_auth, cpLdapCheck, cpLdapGetUser

    B. cpLdapGetUser, au_fetchuser, cpLdapCheck, make_au, au_auth, au_auth_auth

    C. make_au, au_auth, au_fetchuser, cpLdapGetUser, cpLdapCheck, au_auth_auth

    D. au_fetchuser, make_au, au_auth, cpLdapGetUser, au_auth_auth, cpLdapCheck

  • Question 590:

    Which of the following would be a result of having more than one active Security Management Server in a Management High Availability (HA) configuration?

    A. The need to manually synchronize the secondary Security Management Server with the Primary Security Management Server is eliminated.

    B. Allows for faster seamless failover: from active-to-active instead of standby-to-active.

    C. An error notification will popup duringSmart Dashboardlogin if the two machines can communicate indicating Collision status.

    D. Creates a High Availability implementation between the Gateways installed on the Security Management Servers.

Related Exams:

Tips on How to Prepare for the Exams

Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only CheckPoint exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your 156-315.77 exam preparations and CheckPoint certification application, do not hesitate to visit our Vcedump.com to find your solutions here.