1. Home
  2. CheckPoint
  3. 156-915.77

CheckPoint 156-915.77 Online Practice Questions and Exam Preparation

156-915.77 Exam Details

  • Exam Code
    :156-915.77
  • Exam Name
    :Check Point Certified Security Expert Update
  • Certification
    :Checkpoint Certifications
  • Vendor
    :CheckPoint
  • Total Questions
    :233 Q&As
  • Last Updated
    :May 25, 2026

CheckPoint 156-915.77 Online Questions & Answers

  • Question 151:

    To stop acceleration on a GAiA Security Gateway, enter command:

    A. fwaccel off

  • Question 152:

    You are running a R77 Security Gateway on GAiA. In case of a hardware failure, you have a server with the exact same hardware and firewall version installed. What back up method could be used to quickly put the secondary firewall into production?

    A. manual backup
    B. upgrade_export
    C. backup
    D. snapshot

  • Question 153:

    You are about to integrate RSA SecurID users into the Check Point infrastructure. What kind of users are to be defined via SmartDashboard?

    A. A group with generic user
    B. All users
    C. LDAP Account Unit Group
    D. Internal user Group

  • Question 154:

    Your customer, Mr. Smith needs access to other networks and should be able to use all services. Session authentication is not suitable. You select Client Authentication with HTTP. The standard authentication port for client HTTP authentication (Port 900) is already in use. You want to use Port 9001 but are having connectivity problems. Why are you having problems?

    A. The configuration file $FWDIR/conf/fwauthd.conf is incorrect.
    B. The Security Policy is not correct.
    C. You can't use any port other than the standard port 900 for Client Authentication via HTTP.
    D. The service FW_clntauth_http configuration is incorrect.

  • Question 155:

    When migrating the SmartEvent data base from one server to another, the last step is to save the files on the new server. Which of the following commands should you run to save the SmartEvent data base files on the new server?

    A. cp
    B. restore
    C. migrate import
    D. eva_db_restore

  • Question 156:

    The process ________ is responsible for Policy compilation.

    A. FWM
    B. Fwcmp
    C. CPLMD
    D. CPD

  • Question 157:

    John Adams is an HR partner in the ACME organization. ACME IT wants to limit access to HR servers to designated IP addresses to minimize malware infection and unauthorized access risks. Thus, the gateway policy permits access only from John's desktop which is assigned an IP address 10.0.0.19 via DHCP. John received a laptop and wants to access the HR Web Server from anywhere in the organization. The IT department gave the laptop a static IP address, but that limits him to operating it only from his desk. The current Rule Base contains a rule that lets John Adams access the HR Web Server from his laptop. He wants to move around the organization and continue to have access to the HR Web Server.

    To make this scenario work, the IT administrator:

    1) Enables Identity Awareness on a gateway, selects AD Query as one of the Identity Sources installs the policy.

    2) Adds an access role object to the Firewall Rule Base that lets John Adams PC access the HR Web Server from any machine and from any location.

    John plugged in his laptop to the network on a different network segment and he is not able to connect. How does he solve this problem?

    A. John should install the Identity Awareness Agent
    B. The firewall admin should install the Security Policy
    C. John should lock and unlock the computer
    D. Investigate this as a network connectivity issue

  • Question 158:

    Security Gateway R77 supports User Authentication for which of the following services? Select the response below that contains the MOST correct list of supported services.

    A. SMTP, FTP, TELNET
    B. SMTP, FTP, HTTP, TELNET
    C. FTP, HTTP, TELNET
    D. FTP, TELNET

  • Question 159:

    Because of pre-existing design constraints, you set up manual NAT rules for your HTTP server. However, your FTP server and SMTP server are both using automatic NAT rules. All traffic from your FTP and SMTP servers are passing through the Security Gateway without a problem, but traffic from the Web server is dropped on rule 0 because of anti- spoofing settings. What is causing this?

    A. Manual NAT rules are not configured correctly.
    B. Allow bi-directional NAT is not checked in Global Properties.
    C. Routing is not configured correctly.
    D. Translate destination on client side is not checked in Global Properties under Manual NAT Rules.

  • Question 160:

    Fill in the blanks. To view the number of concurrent connections going through your firewall, you would use the command and syntax __ ___ __ __________ __ .

    A. fw tab -t connections -s

Related Exams:

Tips on How to Prepare for the Exams

Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only CheckPoint exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your 156-915.77 exam preparations and CheckPoint certification application, do not hesitate to visit our Vcedump.com to find your solutions here.