Check Point Certified Security Administrator R81 156-215.81 Exam Dumps Online

Eleanor2024-10-14T15:35:12+00:00

By Eleanor CCSA, Check Point

The Check Point CCSA R81 exam has been launched since Check Point announced that the CCSA R80 156-215.80 exam will be retired on August 31, 2022. Candidates are highly recommended to take the 156-215.81 exam to earn the Check Point Certified Security Administrator R81 (CCSA R81) certification. We have new 156-215.81 exam dumps online to provide you with the latest 156-215.81 exam questions and answers for good preparation. 156-215.81 exam dumps of ITPrepare are perfect for learning, which makes it easier for you to test your skills for preparing for Check Point 156-215.81 test, but also makes it perfectly fine to get an inside look at the actual Check Point Certified Security Administrator R81 exam questions.

Recommend To Read Check Point CCSA R81 156-215.81 Free Dumps Questions

Page 1 of 10

1. You are conducting a security audit. While reviewing configuration files and logs, you notice logs accepting POP3 traffic, but you do not see a rule allowing POP3 traffic in the Rule Base.

Which of the following is the most likely cause?

The POP3 rule is disabled.

POP3 is accepted in Global Properties.

The POP3 rule is hidden.

POP3 is one of 3 services (POP3, IMAP, and SMTP) accepted by the default mail object in R77.

2. The most important part of a site-to-site VPN deployment is the ________.

Internet

Remote users

Encrypted VPN tunnel

VPN gateways

3. Which of the following is NOT defined by an Access Role object?

Source Network

Source Machine

Source User

Source Server

4. Fill in the blank: Once a license is activated, a ________ should be installed.

License Management file

Security Gateway Contract file

Service Contract file

License Contract file

5. Fill in the blank: When LDAP is integrated with Check Point Security Management, it is then referred to as _______

UserCheck

User Directory

User Administration

User Center

6. What happens if the identity of a user is known?

If the user credentials do not match an Access Role, the system displays the Captive Portal.

If the user credentials do not match an Access Role, the system displays a sandbox.

If the user credentials do not match an Access Role, the traffic is automatically dropped.

If the user credentials match an Access Role, the rule is applied and traffic is accepted or dropped based on the defined action.

7. Message digests use which of the following?

DES and RC4

IDEA and RC4

SSL and MD4

SHA-1 and MD5

8. Where can administrator edit a list of trusted SmartConsole clients in R80?

cpconfig on a Security Management Server, in the WebUI logged into a Security Management Server.

Only using SmartConsole: Manage and Settings > Permissions and Administrators > Advanced > Trusted Clients.

In cpconfig on a Security Management Server, in the WebUI logged into a Security Management Server, in SmartConsole: Manage and Settings>Permissions and Administrators>Advanced>Trusted Clients.

WebUI client logged to Security Management Server, SmartDashboard: Manage and Settings>Permissions and Administrators>Advanced>Trusted Clients, via cpconfig on a Security Gateway.

9. If there is an Accept Implied Policy set to “First”, what is the reason Jorge cannot see any logs?

Log Implied Rule was not selected on Global Properties.

Log Implied Rule was not set correctly on the track column on the rules base.

Track log column is set to none.

Track log column is set to Log instead of Full Log.

10. Which of the following is NOT an advantage to using multiple LDAP servers?

You achieve a faster access time by placing LDAP servers containing the database at remote sites

Information on a user is hidden, yet distributed across several servers

You achieve compartmentalization by allowing a large number of users to be distributed across several servers

You gain High Availability by replicating the same information on several servers

Page 2 of 10

11. In SmartView Tracker, which rule shows when a packet is dropped due to anti-spoofing?

Rule 0

Blank field under Rule Number

Rule 1

Cleanup Rule

12. Which of these components does NOT require a Security Gateway R77 license?

Security Management Server

Check Point Gateway

SmartConsole

SmartUpdate upgrading/patching

13. Which of the following statements accurately describes the command snapshot?

snapshot creates a full OS-level backup, including network-interface data, Check Point production information, and configuration settings of a GAiA Security Gateway.

snapshot creates a Security Management Server full system-level backup on any OS

snapshot stores only the system-configuration settings on the Gateway

A Gateway snapshot includes configuration settings and Check Point product information from the remote Security Management Server

14. On the following picture an administrator configures Identity Awareness:

After clicking “Next” the above configuration is supported by:

Kerberos SSO which will be working for Active Directory integration

Based on Active Directory integration which allows the Security Gateway to correlate Active Directory users and machines to IP addresses in a method that is completely transparent to the user

Obligatory usage of Captive Portal

The ports 443 or 80 what will be used by Browser-Based and configured Authentication

15. Your manager requires you to setup a VPN to a new business partner site. The administrator from the partner site gives you his VPN settings and you notice that he setup AES 128 for IKE phase 1 and AES 256 for IKE phase 2.

Why is this a problematic setup?

The two algorithms do not have the same key length and so don't work together. You will get the error … No proposal chosen…

All is fine as the longest key length has been chosen for encrypting the data and a shorter key length for higher performance for setting up the tunnel.

Only 128 bit keys are used for phase 1 keys which are protecting phase 2, so the longer key length in phase 2 only costs performance and does not add security due to a shorter key in phase 1.

All is fine and can be used as is.

16. The fw monitor utility is used to troubleshoot which of the following problems?

Phase two key negotiation

Address translation

Log Consolidation Engine

User data base corruption

17. Administrator wishes to update IPS from SmartConsole by clicking on the option “update now” under the IPS tab.

Which device requires internet access for the update to work?

Security Gateway

Device where SmartConsole is installed

SMS

SmartEvent

18. Fill in the blank: RADIUS Accounting gets ______ data from requests generated by the accounting client

Destination

Identity

Payload

Location

19. Which of the following is NOT an alert option?

SNMP

High alert

Mail

User defined alert

20. Which of the following is NOT a VPN routing option available in a star community?

To satellites through center only

To center, or through the center to other satellites, to Internet and other VPN targets

To center and to other satellites through center

To center only

Page 3 of 10

21. Look at the following screenshot and select the BEST answer.

Clients external to the Security Gateway can download archive files from FTP_Ext server using FT

Internal clients can upload and download any-files to FTP_Ext-server using FT

Internal clients can upload and download archive-files to FTP_Ext server using FT

Clients external to the Security Gateway can upload any files to the FTP_Ext-server using FT

22. You are the Security Administrator for MegaCorp. In order to see how efficient your firewall Rule Base is, you would like to see how many often the particular rules match. Where can you see it? Give the BEST answer.

In the SmartView Tracker, if you activate the column Matching Rate.

In SmartReporter, in the section Firewall Blade C Activity > Network Activity with information concerning Top Matched Logged Rules.

SmartReporter provides this information in the section Firewall Blade C Security > Rule Base Analysis with information concerning Top Matched Logged Rules.

It is not possible to see it directly. You can open SmartDashboard and select UserDefined in the Track column. Afterwards, you need to create your own program with an external counter.

23. What port is used for delivering logs from the gateway to the management server?

Port 258

Port 18209

Port 257

Port 981

24. Sally has a Hot Fix Accumulator (HFA) she wants to install on her Security Gateway which operates with GAiA, but she cannot SCP the HFA to the system. She can SSH into the Security Gateway, but she has never been able to SCP files to it.

What would be the most likely reason she cannot do so?

She needs to edit /etc/SSHd/SSHd_config and add the Standard Mode account.

She needs to run sysconfig and restart the SSH process.

She needs to edit /etc/scpusers and add the Standard Mode account.

She needs to run cpconfig to enable the ability to SCP files.

25. The IT Management team is interested in the new features of the Check Point R80 Management and wants to upgrade but they are concerned that the existing R77.30 Gaia Gateways cannot be managed by R80 because it is so different.

As the administrator responsible for the Firewalls, how can you answer or confirm these concerns?

R80 Management contains compatibility packages for managing earlier versions of Check Point Gateways prior to R80. Consult the R80 Release Notes for more information.

R80 Management requires the separate installation of compatibility hotfix packages for managing the earlier versions of Check Point Gateways prior to R80. Consult the R80 Release Notes for more information.

R80 Management was designed as a completely different Management system and so can only monitor Check Point Gateways prior to R80.

R80 Management cannot manage earlier versions of Check Point Gateways prior to R80. Only R80 and above Gateways can be managed. Consult the R80 Release Notes for more information.

26. You want to reset SIC between smberlin and sgosaka.

In SmartDashboard, you choose sgosaka, Communication, Reset. On sgosaka, you start cpconfig, choose Secure Internal Communication and enter the new SIC Activation Key. The screen reads The SIC was successfully initialized and jumps back to the menu.

When trying to establish a connection, instead of a working connection, you receive this error message:

What is the reason for this behavior?

The Gateway was not rebooted, which is necessary to change the SIC key.

You must first initialize the Gateway object in SmartDashboard (i.e., right-click on the object, choose Basic Setup > Initialize).

The check Point services on the Gateway were not restarted because you are still in the cpconfig utility.

The activation key contains letters that are on different keys on localized keyboards. Therefore, the activation can not be typed in a matching fashion.

27. Where do we need to reset the SIC on a gateway object?

SmartDashboard > Edit Gateway Object > General Properties > Communication

SmartUpdate > Edit Security Management Server Object > SIC

SmartUpdate > Edit Gateway Object > Communication

SmartDashboard > Edit Security Management Server Object > SIC

28. Which command is used to obtain the configuration lock in Gaia?

Lock database override

Unlock database override

Unlock database lock

Lock database user

29. How many users can have read/write access in Gaia at one time?

Infinite

One

Three

Two

30. Fill in the blanks: A Check Point software license consists of a _______ and _______ .

Software container; software package

Software blade; software container

Software package; signature

Signature; software blade

Page 4 of 10

31. You are going to upgrade from R77 to R80. Before the upgrade, you want to back up the system so that, if there are any problems, you can easily restore to the old version with all configuration and management files intact.

What is the BEST backup method in this scenario?

backup

Database Revision

snapshot

migrate export

32. Fill in the blanks: The Application Layer Firewalls inspect traffic through the ________ layer(s) of the TCP/IP model and up to and including the ________ layer.

Lower; Application

First two; Internet

First two; Transport

Upper; Application

33. Which Check Point software blade provides visibility of users, groups and machines while also providing access control through identity-based policies?

Firewall

Identity Awareness

Application Control

URL Filtering

34. John Adams is an HR partner in the ACME organization. ACME IT wants to limit access to HR servers to designated IP addresses to minimize malware infection and unauthorized access risks. Thus, gateway policy permits access only from Join's desktop which is assigned an IP address 10.0.0.19 via DHCP.

John received a laptop and wants to access the HR Web Server from anywhere in the organization. The IT department gave the laptop a static IP address, but the limits him to operating it only from his desk. The current Rule Base contains a rule that lets John Adams access the HR Web Server from his laptop. He wants to move around the organization and continue to have access to the HR Web Server.

To make this scenario work, the IT administrator:

1) Enables Identity Awareness on a gateway, selects AD Query as one of the Identity Sources.

2) Adds an access role object to the Firewall Rule Base that lets John Adams PC access the HR Web Server from any machine and from any location.

John plugged in his laptop to the network on a different network segment and he is not able to connect.

How does he solve this problem?

John should install the identity Awareness Agent

The firewall admin should install the Security Policy

John should lock and unlock the computer

Investigate this as a network connectivity issue

35. In the R80 SmartConsole, on which tab are Permissions and Administrators defined?

Security Policies

Logs and Monitor

Manage and Settings

Gateway and Servers

36. Which authentication scheme requires a user to possess a token?

TACACS

SecurID

Check Point password

RADIUS

37. What is the potential downside or drawback to choosing the Standalone deployment option instead of the Distributed deployment option?

degrades performance as the Security Policy grows in size

requires additional Check Point appliances

requires additional software subscription

increases cost

38. Fill in the blanks: A High Availability deployment is referred to as a ______ cluster and a Load Sharing deployment is referred to as a ________ cluster.

Standby/standby; active/active

Active/active; standby/standby

Active/active; active/standby;

Active/standby; active/active

39. Choose what BEST describes a Session.

Starts when an Administrator publishes all the changes made on SmartConsole.

Starts when an Administrator logs in to the Security Management Server through SmartConsole and ends when it is published.

Sessions ends when policy is pushed to the Security Gateway.

Sessions locks the policy package for editing.

40. Look at the screenshot below.

What CLISH command provides this output?

show configuration all

show confd configuration

show confd configuration all

show configuration

Page 5 of 10

41. Vanessa is a Firewall administrator. She wants to test a backup of her company’s production Firewall cluster Dallas_GW. She has a lab environment that is identical to her production environment. She decided to restore production backup via SmartConsole in lab environment.

Which details she need to fill in System Restore window before she can click OK button and test the backup?

Server, SCP, Username, Password, Path, Comment, Member

Server, TFTP, Username, Password, Path, Comment, All Members

Server, Protocol, Username, Password, Path, Comment, All Members

Server, Protocol, Username, Password, Path, Comment, Member

42. Fill in the blank: The _________ software blade enables Application Security policies to allow, block, or limit website access based on user, group, and machine identities.

Application Control

Data Awareness

URL Filtering

Threat Emulation

43. Which feature in R77 permits blocking specific IP addresses for a specified time period?

Suspicious Activity Monitoring

HTTP Methods

Local Interface Spoofing

Block Port Overflow

44. The organization's security manager wishes to back up just the Gaia operating system parameters.

Which command can be used to back up only Gaia operating system parameters like interface details, Static routes and Proxy ARP entries?

show configuration

backup

migrate export

upgrade export

45. 1.Office mode means that:

SecureID client assigns a routable MAC address. After the user authenticates for a tunnel, the VPN gateway assigns a routable IP address to the remote client.

Users authenticate with an Internet browser and use secure HTTPS connection.

Local ISP (Internet service Provider) assigns a non-routable IP address to the remote user.

Allows a security gateway to assign a remote client an IP address. After the user authenticates for a tunnel, the VPN gateway assigns a routable IP address to the remote client.

46. Which Check Point software blade provides protection from zero-day and undiscovered threats?

Firewall

Threat Emulation

Application Control

Threat Extraction

47. MyCorp has the following NAT rules. You need to disable the NAT function when Alpha-internal networks try to reach the Google DNS (8.8.8.8) server.

What can you do in this case?

Use manual NAT rule to make an exception

Use the NAT settings in the Global Properties

Disable NAT inside the VPN community

Use network exception in the Alpha-internal network object

48. Joey is using the computer with IP address 192.168.20.13. He wants to access web page “www.CheckPoint.com”, which is hosted on Web server with IP address 203.0.113.111.

How many rules on Check Point Firewall are required for this connection?

Two rules C first one for the HTTP traffic and second one for DNS traffic.

Only one rule, because Check Point firewall is a Packet Filtering firewall

Two rules C one for outgoing request and second one for incoming replay.

Only one rule, because Check Point firewall is using Stateful Inspection technology.

49. Can a Check Point gateway translate both source IP address and destination IP address in a given packet?

Yes.

No.

Yes, but only when using Automatic NA

Yes, but only when using Manual NA

50. When using LDAP as an authentication method for Identity Awareness, the query:

Requires client and server side software.

Prompts the user to enter credentials.

Requires administrators to specifically allow LDAP traffic to and from the LDAP Server and the Security Gateway.

Is transparent, requiring no client or server side software, or client intervention.

Page 6 of 10

51. Jack works for a managed service provider and he has been tasked to create 17 new policies for several new customers. He does not have much time.

What is the BEST way to do this with R80 security management?

Create a text-file with mgmt_cli script that creates all objects and policies. Open the file in SmartConsole Command Line to run it.

Create a text-file with Gaia CLI -commands in order to create all objects and policies. Run the file in CLISH with command load configuration.

Create a text-file with DBEDIT script that creates all objects and policies. Run the file in the command line of the management server using command dbedit -f.

Use Object Explorer in SmartConsole to create the objects and Manage Policies from the menu to create the policies.

52. Which of the following is NOT a set of Regulatory Requirements related to Information Security?

ISO 37001

Sarbanes Oxley (SOX)

HIPPA

PCI

53. When Identity Awareness is enabled, which identity source(s) is(are) used for Application Control?

RADIUS

Remote Access and RADIUS

AD Query

AD Query and Browser-based Authentication

54. Fill in the blank: Licenses can be added to the License and Contract repository ________ .

From the User Center, from a file, or manually

From a file, manually, or from SmartView Monitor

Manually, from SmartView Monitor, or from the User Center

From SmartView Monitor, from the User Center, or from a file

55. Install the Security Policy.

2, 3, 4, 1, 5

2, 1, 3, 4, 5

1, 3, 2, 4, 5

2, 3, 4, 5, 1

56. Choose what BEST describes users on Gaia Platform.

There is one default user that cannot be deleted.

There are two default users and one cannot be deleted.

There is one default user that can be deleted.

There are two default users that cannot be deleted and one SmartConsole Administrator.

57. What action can be performed from SmartUpdate R77?

upgrade_export

fw stat -1

cpinfo

remote_uninstall_verifier

58. AdminA and AdminB are both logged in on SmartConsole.

What does it mean if AdminB sees a locked icon on a rule? Choose the BEST answer.

Rule is locked by AdminA, because the save bottom has not been press.

Rule is locked by AdminA, because an object on that rule is been edited.

Rule is locked by AdminA, and will make it available if session is published.

Rule is locked by AdminA, and if the session is saved, rule will be available

59. Mesh and Star are two types of VPN topologies.

Which statement below is TRUE about these types of communities?

A star community requires Check Point gateways, as it is a Check Point proprietary technology.

In a star community, satellite gateways cannot communicate with each other.

In a mesh community, member gateways cannot communicate directly with each other.

In a mesh community, all members can create a tunnel with any other member.

60. What statement is true regarding Visitor Mode?

VPN authentication and encrypted traffic are tunneled through port TCP 443.

Only ESP traffic is tunneled through port TCP 443.

Only Main mode and Quick mode traffic are tunneled on TCP port 443.

All VPN traffic is tunneled through UDP port 4500.

Page 7 of 10

61. The Captive Portal tool:

Acquires identities from unidentified users.

Is only used for guest user authentication.

Allows access to users already identified.

Is deployed from the Identity Awareness page in the Global Properties settings.

62. NAT can NOT be configured on which of the following objects?

HTTP Logical Server

Gateway

Address Range

Host

63. The default method for destination NAT is _____________, where NAT occurs on the Inbound interface closest to the client.

Destination side

Source side

Server side

Client side

64. Bob and Joe both have Administrator Roles on their Gaia Platform. Bob logs in on the WebUI and then Joe logs in through CLI. Choose what BEST describes the following scenario, where Bob and Joe are both logged in:

When Joe logs in, Bob will be log out automatically.

Since they both are log in on different interfaces, they both will be able to make changes.

If Joe tries to make changes, he won't, database will be locked.

Bob will be prompt that Joe logged in.

65. Provide very wide coverage for all products and protocols, with noticeable performance impact.

How could you tune the profile in order to lower the CPU load still maintaining security at good level? Select the BEST answer.

Set High Confidence to Low and Low Confidence to Inactive.

Set the Performance Impact to Medium or lower.

The problem is not with the Threat Prevention Profile. Consider adding more memory to the appliance.

Set the Performance Impact to Very Low Confidence to Prevent.

66. Why would an administrator see the message below?

A new Policy Package created on both the Management and Gateway will be deleted and must be packed up first before proceeding.

A new Policy Package created on the Management is going to be installed to the existing Gateway.

A new Policy Package created on the Gateway is going to be installed on the existing Management.

A new Policy Package created on the Gateway and transferred to the management will be overwritten by the Policy Package currently on the Gateway but can be restored from a periodic backup on the Gateway.

67. There are two R77.30 Security Gateways in the Firewall Cluster. They are named FW_A and FW_B. The cluster is configured to work as HA (High availability) with default cluster configuration. FW_A is configured to have higher priority than FW_B. FW_A was active and processing the traffic in the morning. FW_B was standby. Around 1100 am, its interfaces went down and this caused a failover. FW_B became active. After an hour, FW_A’s interface issues were resolved and it became operational.

When it re-joins the cluster, will it become active automatically?

No, since “maintain current active cluster member” option on the cluster object properties is enabled by default

No, since “maintain current active cluster member” option is enabled by default on the Global Properties

Yes, since “Switch to higher priority cluster member” option on the cluster object properties is enabled by default

Yes, since “Switch to higher priority cluster member” option is enabled by default on the Global Properties

68. Which policy type is used to enforce bandwidth and traffic control rules?

Threat Emulation

Access Control

QoS

Threat Prevention

69. Which of the completed statements is NOT true? The WebUI can be used to manage user accounts and:

assign privileges to users.

edit the home directory of the user.

add users to your Gaia system.

assign user rights to their home directory in the Security Management Server

70. Study the Rule base and Client Authentication Action properties screen.

After being authenticated by the Security Gateways, a user starts a HTTP connection to a Web site.

What happens when the user tries to FTP to another site using the command line? The:

user is prompted for authentication by the Security Gateways again.

FTP data connection is dropped after the user is authenticated successfully.

user is prompted to authenticate from that FTP site only, and does not need to enter his username and password for Client Authentication

FTP connection is dropped by Rule 2.

Page 8 of 10

71. Fill in the blank: A(n) _____ rule is created by an administrator and is located before the first and before last rules in the Rule Base.

Firewall drop

Explicit

Implicit accept

Implicit drop

Implied

72. Which of the following is TRUE about the Check Point Host object?

Check Point Host has no routing ability even if it has more than one interface installed.

When you upgrade to R80 from R77.30 or earlier versions, Check Point Host objects are converted to gateway objects.

Check Point Host is capable of having an IP forwarding mechanism.

Check Point Host can act as a firewall.

73. After the initial installation the First Time Configuration Wizard should be run. Select the BEST answer.

First Time Configuration Wizard can be run from the Unified SmartConsole.

First Time Configuration Wizard can be run from the command line or from the WebU

First time Configuration Wizard can only be run from the WebU

Connection to the internet is required before running the First Time Configuration wizard.

74. Fill in the blank: The ________ feature allows administrators to share a policy with other policy packages.

Shared policy packages

Shared policies

Concurrent policy packages

Concurrent policies

75. Anti-Spoofing is typically set up on which object type?

Security Gateway

Host

Security Management object

Network

76. Which of the following licenses are considered temporary?

Perpetual and Trial

Plug-and-play and Evaluation

Subscription and Perpetual

Evaluation and Subscription

77. What does it mean if Bob gets this result on an object search? Refer to the image below. Choose the BEST answer.

Search detailed is missing the subnet mask.

There is no object on the database with that name or that IP address.

There is no object on the database with that IP address.

Object does not have a NAT IP address.

78. What CLI utility allows an administrator to capture traffic along the firewall inspection chain?

show interface (interface) Cchain

tcpdump

tcpdump /snoop

fw monitor

79. Which directory holds the SmartLog index files by default?

$SMARTLOGDIR/data

$SMARTLOG/dir

$FWDIR/smartlog

$FWDIR/log

80. Which Check Point software blade prevents malicious files from entering a network using virus signatures and anomaly-based protections from ThreatCloud?

Firewall

Application Control

Anti-spam and Email Security

Antivirus

Page 9 of 10

81. What are the three tabs available in SmartView Tracker?

Network & Endpoint, Management, and Active

Network, Endpoint, and Active

Predefined, All Records, Custom Queries

Endpoint, Active, and Custom Queries

82. Your bank's distributed R77 installation has Security Gateways up for renewal.

Which SmartConsole application will tell you which Security Gateways have licenses that will expire within the next 30 days?

SmartView Tracker

SmartPortal

SmartUpdate

SmartDashboard

83. You want to define a selected administrator's permission to edit a layer. However, when you click the + sign in the “Select additional profile that will be able edit this layer” you do not see anything.

What is the most likely cause of this problem? Select the BEST answer.

“Edit layers by Software Blades” is unselected in the Permission Profile

There are no permission profiles available and you need to create one first.

All permission profiles are in use.

“Edit layers by selected profiles in a layer editor” is unselected in the Permission profile.

84. Fill in the blank: The IPS policy for pre-R80 gateways is installed during the _______ .

Firewall policy install

Threat Prevention policy install

Anti-bot policy install

Access Control policy install

85. Fill in the blank: A _______ is used by a VPN gateway to send traffic as if it were a physical interface.

VPN Tunnel Interface

VPN community

VPN router

VPN interface

86. Which SmartConsole component can Administrators use to track changes to the Rule Base?

WebUI

SmartView Tracker

SmartView Monitor

SmartReporter

87. What is the default shell of Gaia CLI?

Monitor

Read-only

Bash

88. Which of the following is NOT a back up method?

Save backup

System backup

snapshot

Migrate

89. R80 Security Management Server can be installed on which of the following operating systems?

Gaia only

Gaia, SPLAT, Windows Server only

Gaia, SPLAT, Windows Server and IPSO only

Gaia and SPLAT only

90. Fill in the blanks: A security Policy is created in _________, stored in the _________, and Distributed to the various __________.

Rule base, Security Management Server, Security Gateways

SmartConsole, Security Gateway, Security Management Servers

SmartConsole, Security Management Server, Security Gateways

The Check Point database, SmartConsole, Security Gateways

Page 10 of 10

91. In which VPN community is a satellite VPN gateway not allowed to create a VPN tunnel with another satellite VPN gateway?

Pentagon

Combined

Meshed

Star

92. Fill in the blank: The R80 SmartConsole, SmartEvent GUI client, and _______ consolidate billions of logs and shows them as prioritized security events.

SmartMonitor

SmartView Web Application

SmartReporter

SmartTracker

93. In order to modify Security Policies the administrator can use which of the following tools? Select the BEST answer.

Command line of the Security Management Server or mgmt_cli.exe on any Windows computer.

SmartConsole and WebUI on the Security Management Server.

mgmt_cli or WebUI on Security Gateway and SmartConsole on the Security Management Server.

SmartConsole or mgmt_cli on any computer where SmartConsole is installed.

94. Fill in the blanks: In the Network policy layer, the default action for the Implied last rule is ________ all traffic. However, in the Application Control policy layer, the default action is ________ all traffic.

Accept; redirect

Accept; drop

Redirect; drop

Drop; accept

95. To install a brand new Check Point Cluster, the MegaCorp IT department bought 1 Smart-1 and 2 Security Gateway Appliances to run a cluster.

Which type of cluster is it?

Full HA Cluster

High Availability

Standalone

Distributed

96. At what point is the Internal Certificate Authority (ICA) created?

Upon creation of a certificate

During the primary Security Management Server installation process.

When an administrator decides to create one.

When an administrator initially logs into SmartConsole.

97. Which type of Endpoint Identity Agent includes packet tagging and computer authentication?

Full

Light

Custom

Complete

98. Fill in the blank: ________information is included in the “Full Log” tracking option, but is not included in the “Log” tracking option?

file attributes

application

destination port

data type

99. Which of the following is NOT an element of VPN Simplified Mode and VPN Communities?

“Encrypt” action in the Rule Base

Permanent Tunnels

“VPN” column in the Rule Base

Configuration checkbox “Accept all encrypted traffic”

100. Choose the SmartLog property that is TRUE.

SmartLog has been an option since release R71.10.

SmartLog is not a Check Point product.

SmartLog and SmartView Tracker are mutually exclusive.

SmartLog is a client of SmartConsole that enables enterprises to centrally track log records and security activity with Google-like search.

Check Point Certified Security Administrator R81 156-215.81 Exam Dumps Online

Check Point Certified Security Administrator R81 156-215.81 Exam Dumps Online

Recommend To Read Check Point CCSA R81 156-215.81 Free Dumps Questions

Share this post

Author

Comment (1)

Related Posts