It is more faster and easier to pass the Check Point 156-215.77 exam by using Virtual Check Point Check Point Certified Security Administrator – GAiA questuins and answers. Immediate access to the Renovate 156-215.77 Exam and find the same core area 156-215.77 questions with professionally verified answers, then PASS your exam with a high score now.
2017 Jan ccsa exam code:
Q91. - (Topic 3)
You are the Security Administrator for MegaCorp and would like to view network activity using SmartReporter. You select a standard predefined report. As you can see here, you can select the london Gateway.
When you attempt to configure the Express Report, you are unable to select this Gateway.
What is the reason for this behavior? Give the BEST answer.
A. You must enable the Eventia Express Mode on the london Gateway.
B. You must enable Monitoring in the london Gateway object's General Properties.
C. You have the license for Eventia Reporter in Standard mode only.
D. You must enable the Express Mode inside Eventia Reporter.
Q92. - (Topic 3)
You are the Security Administrator for ABC-Corp. A Check Point Firewall is installed and in use on GAiA. You are concerned that the system might not be retaining your entries for the interfaces and routing configuration. You would like to verify your entries in the corresponding file(s) on GAiA. Where can you view them? Give the BEST answer.
Q93. - (Topic 1)
When you hide a rule in a Rule Base, how can you then disable the rule?
A. Right-click on the hidden rule place-holder bar and uncheck Hide, then right-click and select Disable Rule(s); re-hide the rule.
B. Right-click on the hidden rule place-holder bar and select Disable Rule(s).
C. Use the search utility in SmartDashboard to view all hidden rules. Select the relevant rule and click Disable Rule(s).
D. Hidden rules are already effectively disabled from Security Gateway enforcement.
Q94. - (Topic 3)
What command syntax would you use to turn on PDP logging in a distributed environment?
A. pdp tracker on
B. pdp log=1
C. pdp track=1
D. pdp logging on
Q95. - (Topic 3)
True or False? SmartView Monitor can be used to create alerts on a specified Gateway.
A. False, alerts can only be set in SmartDashboard Global Properties.
B. True, by choosing the Gateway and selecting System Information.
C. False, an alert cannot be created for a specified Gateway.
D. True, by right-clicking on the Gateway and selecting Configure Thresholds.
Rebirth 156-215.77 exam:
Q96. - (Topic 2)
A Cleanup rule.
A. drops packets without logging connections that would otherwise be dropped and logged by default.
B. logs connections that would otherwise be accepted without logging by default.
C. drops packets without logging connections that would otherwise be accepted and logged by default.
D. logs connections that would otherwise be dropped without logging by default.
Q97. - (Topic 3)
Which authentication type requires specifying a contact agent in the Rule Base?
A. Session Authentication
B. User Authentication
C. Client Authentication with Partially Automatic Sign On
D. Client Authentication with Manual Sign On
Q98. - (Topic 3)
John Adams is an HR partner in the ACME organization. ACME IT wants to limit access to HR servers to a set of designated IP addresses to minimize malware infection and unauthorized access risks. Thus, the gateway policy permits access only from John's desktop which is assigned a static IP address 10.0.0.19.
He has received a new laptop and wants to access the HR Web Server from anywhere in the organization. The IT department gave the laptop a static IP address, but that limits him to operating it only from his desk. The current Rule Base contains a rule that lets John Adams access the HR Web Server from his laptop with a static IP (10.0.0.19).
He wants to move around the organization and continue to have access to the HR Web Server. To make this scenario work, the IT administrator:
1) Enables Identity Awareness on a gateway, selects AD Query as one of the Identity Sources, and installs the policy.
2) Adds an access role object to the Firewall Rule Base that lets John Adams access the HR Web Server from any machine and from any location and installs policy.
John plugged in his laptop to the network on a different network segment and was not able to connect to the HR Web server. What is the next BEST troubleshooting step?
A. John should install the Identity Awareness Agent
B. Investigate this as a network connectivity issue
C. After enabling Identity Awareness, reboot the gateway
D. He should lock and unlock the computer
Q99. - (Topic 1)
How can you check whether IP forwarding is enabled on an IP Security Appliance?
A. clish -c show routing active enable
B. ipsofwd list
C. cat /proc/sys/net/ipv4/ip_forward
D. echo 1 > /proc/sys/net/ipv4/ip_forward
Q100. - (Topic 3)
As you review this Security Policy, what changes could you make to accommodate Rule 4?
A. Modify the columns Source or Destination in Rule 4.
B. Remove the service HTTP from the column Service in Rule 4.
C. Modify the column VPN in Rule 2 to limit access to specific traffic.
D. Nothing at all
see more 156-215.77 dumps