Which command will reset the kernel debug options to default settings?
A. fw ctl dbg -a 0 B. fw ctl debug set 0 C. fw ctl debug 0 D. fw ctl dbg resetall
C. fw ctl debug 0
Question 232:
Which protocol is used by LEA for log retrieval?
A. TCP B. UDP C. HTTP D. HTTPS
A. TCP
Explanation
LEA (Log Export API) uses TCP for communication, typically on port 18184.
Question 233:
When SecureXL is enabled, all packets should be accelerated, except packets that match the following conditions:
A. All UDP packets B. All IPv6 Traffic C. All packets that match a rule whose source or destination is the Outside Corporate Network D. CIFS packets
D. CIFS packets
Explanation
When SecureXL is enabled, all packets should be accelerated, except packets that match the following conditions: CIFS packets. SecureXL is a technology that accelerates network traffic processing by offloading intensive operations from the Firewall kernel to a dedicated SecureXL device. However, some packets cannot be accelerated by SecureXL due to various reasons, such as unsupported features, security policy settings, or protocol limitations. One example of packets that cannot be accelerated by SecureXL are CIFS packets, which are used for file sharing and access over SMB protocol. CIFS packets are not accelerated by SecureXL because they require stateful inspection by the Firewall kernel.
Question 234:
Which pre-defined Permission Profile should be assigned to an administrator that requires full access to audit all configurations without modifying them?
A. Auditor B. Read Only All C. Super User D. Full Access
B. Read Only All
Explanation
The pre-defined Permission Profile that should be assigned to an administrator that requires full access to audit all configurations without modifying them is Read Only All. This profile grants read-only access to all features and blades in SmartConsole, including logs and reports. This profile is suitable for auditors who need to review the security policy and settings, but not change them.
Check Point Management (cpm) is the main management process in that it provides the architecture for a consolidated management console. It empowers the migration from legacy Client-side logic to Server-side logic. The cpm process:
A. Allow GUI Client and management server to communicate via TCP Port 19001 B. Allow GUI Client and management server to communicate via TCP Port 18191 C. Performs database tasks such as creating, deleting, and modifying objects and compiling policy. D. Performs database tasks such as creating, deleting, and modifying objects and compiling as well as policy code generation.
C. Performs database tasks such as creating, deleting, and modifying objects and compiling policy.
Question 236:
Which feature prioritizes traffic using queues?
A. SecureXL B. QoS C. Dynamic Dispatcher D. IPS
B. QoS
Explanation
QoS (Quality of Service) prioritizes traffic using queues to ensure important traffic gets precedence.
Question 237:
You want to verify if your management server is ready to upgrade to R81.20.
What tool could you use in this process?
A. migrate export B. upgrade_tools verify C. pre_upgrade_verifier D. migrate import
C. pre_upgrade_verifier
Explanation
According to the Check Point website, you can use the pre_upgrade_verifier tool to verify if your management server is ready to upgrade to R81.20. This tool checks the compatibility of your current configuration and database with the target version, and provides a detailed report of any issues or warnings. The other tools are either used for exporting or importing databases, or not valid tools.
References:
Upgrade Verification Service
Question 238:
Fill in the blank: RADIUS protocol uses _________ to communicate with the gateway.
A. TDP B. CCP C. HTTP D. UDP
D. UDP
Question 239:
You find one of your cluster gateways showing "Down" when you run the "cphaprob stat" command. You then run the "clusterXL_admin up" on the down member but unfortunately the member continues to show down.
What command do you run to determine the cause?
A. cphaprob -f register B. cphaprob -d -s report C. cpstat -f all D. cphaprob -a list
D. cphaprob -a list
Explanation
To determine the cause of a cluster gateway showing "Down" despite running "clusterXL_admin up" on the down member, you can run the following command:
cphaprob -a list
This command will provide a list of cluster members along with their statuses and can help diagnose the issue with the down member.
References:
Check Point documentation or training materials related to High Availability and ClusterXL.
Question 240:
The back-end database for Check Point Management uses:
Nowadays, the certification exams become more and more important and required by more and more
enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare
for the exam in a short time with less efforts? How to get a ideal result and how to find the
most reliable resources? Here on Vcedump.com, you will find all the answers.
Vcedump.com provide not only CheckPoint exam questions,
answers and explanations but also complete assistance on your exam preparation and certification
application. If you are confused on your 156-315.81.20 exam preparations
and CheckPoint certification application, do not hesitate to visit our
Vcedump.com to find your solutions here.