1. Home
  2. CheckPoint
  3. 156-915.77

CheckPoint 156-915.77 Online Practice Questions and Exam Preparation

156-915.77 Exam Details

  • Exam Code
    :156-915.77
  • Exam Name
    :Check Point Certified Security Expert Update
  • Certification
    :Checkpoint Certifications
  • Vendor
    :CheckPoint
  • Total Questions
    :233 Q&As
  • Last Updated
    :May 25, 2026

CheckPoint 156-915.77 Online Questions & Answers

  • Question 131:

    To qualify as an Identity Awareness enabled rule, which column MAY include an Access Role?

    A. Source
    B. Track
    C. User
    D. Action

  • Question 132:

    Which of the following authentication methods can be configured in the Identity Awareness setup wizard?

    A. TACACS
    B. Captive Portal
    C. Check Point Password
    D. Windows password

  • Question 133:

    Your expanding network currently includes ClusterXL running Multicast mode on two members, as shown in this topology: Exhibit:

    You need to add interfaces: 10.10.10.1/24 on Member A, and 10.10.10.2/24 on Member B. The virtual IP address for these interfaces is 10.10.10.3/24. Both cluster gateways have a Quad card with an available eth3 interface. What is the correct procedure to add these interfaces?

    A. 1. Disable "Cluster membership" from one Gateway via cpconfig. 2. Configure the new interface via sysconfig from the "non-member" Gateway. 3. Re-enable "Cluster membership" on the Gateway. 4. Perform the same steps on the other Gateway. 5. Update the topology in the cluster object. 6. Install the Security Policy.
    B. 1. Configure the new interface on both members using WebUI. 2. Update the new topology in the cluster object from SmartDashboard. 3. Define virtual IP in the Dashboard 4. Install the Security Policy.
    C. 1. Use WebUI to configure the new interfaces on both member. 2. Update the topology in the cluster object. 3. Reboot both gateways. 4. Install the Security Policy.
    D. 1. Use the command ifconfig to configure and enable the new interface on both members. 2. Update the topology in the cluster object for the cluster and both members. 3. Install the Security Policy. 4. Reboot the gateway.

  • Question 134:

    What is the syntax for uninstalling a package using newpkg?

    A. -u
    B. -i
    C. -S
    D. newpkg CANNOT be used to uninstall a package

  • Question 135:

    You just installed a new Web server in the DMZ that must be reachable from the Internet.

    You create a manual Static NAT rule as follows:

    Source: Any || Destination: web_public_IP || Service: Any || Translated Source: original || Translated Destination: web_private_IP || Service: Original

    "web_public_IP" is the node object that represents the new Web server's public IP address. "web_private_IP" is the node object that represents the new Web site's private IP address. You enable all settings from Global Properties > NAT.

    When you try to browse the Web server from the Internet you see the error "page cannot be displayed".

    Which of the following is NOT a possible reason?

    A. There is no Security Policy defined that allows HTTP traffic to the protected Web server.
    B. There is no ARP table entry for the protected Web server's public IP address.
    C. There is no route defined on the Security Gateway for the public IP address to the Web server's private IP address.
    D. There is no NAT rule translating the source IP address of packets coming from the protected Web server.

  • Question 136:

    Which command line interface utility allows the administrator to verify the Security Policy name and timestamp currently installed on a firewall module?

    A. cpstat fwd
    B. fw ver
    C. fw stat
    D. fw ctl pstat

  • Question 137:

    Where do you define NAT properties so that NAT is performed either client side or server side?

    A. In Smart Dashboard under Gateway setting
    B. In Smart Dashboard under Global Properties > NAT definition
    C. In Smart Dashboard in the NAT Rules
    D. In file $DFWDIR/lib/table.def

  • Question 138:

    Which is the lowest Gateway version manageable by SmartCenter R77?

    A. R65
    B. S71
    C. R55
    D. R60A

  • Question 139:

    The process ________________ compiles $FWDIR/conf/*.W files into machine language.

    A. fw gen
    B. cpd
    C. fwd
    D. fwm

  • Question 140:

    Captive Portal is a __________ that allows the gateway to request login information from the user.

    A. Pre-configured and customizable web-based tool
    B. Transparent network inspection tool
    C. LDAP server add-on
    D. Separately licensed feature

Related Exams:

Tips on How to Prepare for the Exams

Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only CheckPoint exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your 156-915.77 exam preparations and CheckPoint certification application, do not hesitate to visit our Vcedump.com to find your solutions here.