1. Home
  2. CheckPoint
  3. 156-915.80

CheckPoint 156-915.80 Online Practice Questions and Exam Preparation

156-915.80 Exam Details

  • Exam Code
    :156-915.80
  • Exam Name
    :Check Point Certified Security Expert Update - R80.10
  • Certification
    :Checkpoint Certifications
  • Vendor
    :CheckPoint
  • Total Questions
    :536 Q&As
  • Last Updated
    :May 28, 2026

CheckPoint 156-915.80 Online Questions & Answers

  • Question 231:

    Which command collects diagnostic data for analyzing customer setup remotely?

    A. cpinfo
    B. migrate export
    C. sysinfo
    D. cpview

  • Question 232:

    When restoring R80 using the command upgrade_import, which of the following items are NOT restored?

    A. SIC Certificates
    B. Licenses
    C. Route tables
    D. Global properties

  • Question 233:

    Charles requests a Website while using a computer not in the net_singapore network. What is TRUE about his location restriction?

    A. Source setting in Source column always takes precedence.
    B. Source setting in User Properties always takes precedence.
    C. As location restrictions add up, he would be allowed from net_singapore and net_sydney.
    D. It depends on how the User Auth object is configured; whether User Properties or Source Restriction takes precedence.

  • Question 234:

    John Adams is an HR partner in the ACME organization. ACME IT wants to limit access to HR servers to a set of designated IP addresses to minimize malware infection and unauthorized access risks. Thus, the gateway policy permits

    access only from John's desktop which is assigned a static IP address 10.0.0.19.

    He has received a new laptop and wants to access the HR Web Server from anywhere in the organization. The IT department gave the laptop a static IP address, but that limits him to operating it only from his desk. The current Rule Base

    contains a rule that lets John Adams access the HR Web Server from his laptop with a static IP (10.0.0.19).

    He wants to move around the organization and continue to have access to the HR Web Server. To make this scenario work, the IT administrator:

    1) Enables Identity Awareness on a gateway, selects AD Query as one of the Identity Sources, and installs the policy.

    2) Adds an access role object to the Firewall Rule Base that lets John Adams access the HR Web Server from any machine and from any location and installs policy. John plugged in his laptop to the network on a different network segment

    and was not able to connect to the HR Web server. What is the next BEST troubleshooting step?

    A. Investigate this as a network connectivity issue
    B. Install the Identity Awareness Agent
    C. Set static IP to DHCP
    D. After enabling Identity Awareness, reboot the gateway

  • Question 235:

    You need to change the number of firewall instances used by CoreXL. How can you achieve this goal?

    A. edit fwaffinity.conf; reboot required
    B. cpconfig; reboot required
    C. edit fwaffinity.conf; reboot not required
    D. cpconfig: reboot not required

  • Question 236:

    How could you compare the Fingerprint shown to the Fingerprint on the server? Exhibit:

    A. Run cpconfig, select the Certificate's Fingerprint option and view the fingerprint
    B. Run cpconfig, select the GUI Clients option and view the fingerprint
    C. Run cpconfig, select the Certificate Authority option and view the fingerprint
    D. Run sysconfig, select the Server Fingerprint option and view the fingerprint

  • Question 237:

    When using AD Query to authenticate users for Identity Awareness, identity data is received seamlessly from the Microsoft Active Directory (AD). What is NOT a recommended usage of this method?

    A. Leveraging identity in the application control blade
    B. Basic identity enforcement in the internal network
    C. Identity-based auditing and logging
    D. Identity-based enforcement for non-AD users (non-Windows and guest users)

  • Question 238:

    Type the command and syntax to configure the Cluster Control Protocol (CCP) to use Broadcast.

  • Question 239:

    Which file is not in the $FWDIR directory collected by the CPInfo utility from the server?

    A. fwauthd.conf
    B. asm.C
    C. classes.C
    D. cpd.elg

  • Question 240:

    Your internal network is configured to be 10.1.1.0/24. This network is behind your perimeter R80 Gateway, which connects to your ISP provider. How do you configure the Gateway to allow this network to go out to the Internet?

    A. Use Hide NAT for network 10.1.1.0/24 behind the external IP address of your perimeter Gateway.
    B. Use Hide NAT for network 10.1.1.0/24 behind the internal interface of your perimeter Gateway.
    C. Use automatic Static NAT for network 10.1.1.0/24.
    D. Do nothing, as long as 10.1.1.0 network has the correct default Gateway.

Related Exams:

Tips on How to Prepare for the Exams

Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only CheckPoint exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your 156-915.80 exam preparations and CheckPoint certification application, do not hesitate to visit our Vcedump.com to find your solutions here.