Cause all that matters here is passing the Check Point checkpoint 156 215.77 exam. Cause all that you need is a high score of 156 215.77 pdf Check Point Certified Security Administrator – GAiA exam. The only one thing you need to do is downloading Pass4sure ccsa 156 215.77 exam study guides now. We will not let you down with our money-back guarantee.
♥♥ 2021 NEW RECOMMEND ♥♥
Free VCE & PDF File for Check Point 156-215.77 Real Exam (Full Version!)
★ Pass on Your First TRY ★ 100% Money Back Guarantee ★ Realistic Practice Exam Questions
Free Instant Download NEW 156-215.77 Exam Dumps (PDF & VCE):
Available on:
http://www.surepassexam.com/156-215.77-exam-dumps.html
Q101. - (Topic 3)
What is a Consolidation Policy?
A. A global Policy used to share a common enforcement policy for multiple Security Gateways.
B. The collective name of the logs generated by SmartReporter.
C. The collective name of the Security Policy, Address Translation, and IPS Policies.
D. The specific Policy written in SmartDashboard to configure which log data is stored in the SmartReporter database.
Answer: D
Q102. - (Topic 3)
Central license management allows a Security Administrator to perform which of the following functions?
1.
Check for expired licenses.
2.
Sort licenses and view license properties.
3.
Attach both R77 Central and Local licesnes to a remote module.
4.
Delete both R77 Local Licenses and Central licenses from a remote module.
5.
Add or remove a license to or from the license repository.
6.
Attach and/or delete only R77 Central licenses to a remote module (not Local licenses).
A. 1, 2, 3, 4, & 5
B. 2, 3, 4, & 5
C. 2, 5, & 6
D. 1, 2, 5, & 6
Answer: A
Q103. - (Topic 2)
Which statement is TRUE about implicit rules?
A. You create them in SmartDashboard.
B. The Gateway enforces implicit rules that enable outgoing packets only.
C. Changes to the Security Gateway's default settings do not affect implicit rules.
D. They are derived from Global Properties and explicit object properties.
Answer: D
Q104. - (Topic 3)
John is the Security Administrator in his company. He installs a new R77 Security Management Server and a new R77 Gateway. He now wants to establish SIC between them. After entering the activation key, he gets the following message in SmartDashboard -
“Trust established?
SIC still does not seem to work because the policy won’t install and interface fetching does not work. What might be a reason for this?
A. SIC does not function over the network.
B. It always works when the trust is established
C. The Gateway’s time is several days or weeks in the future and the SIC certificate is not yet valid.
D. This must be a human error.
Answer: C
Q105. - (Topic 1)
Which of the following statements accurately describes the command snapshot?
A. snapshot creates a Security Management Server full system-level backup on any OS.
B. snapshot stores only the system-configuration settings on the Gateway.
C. A Gateway snapshot includes configuration settings and Check Point product information from the remote Security Management Server.
D. snapshot creates a full OS-level backup, including network-interface data, Check Point product information, and configuration settings during an upgrade of a SecurePlatform Security Gateway.
Answer: D
Q106. - (Topic 3)
Which rule is responsible for the installation failure? A. Rule 3
B. Rule 4
C. Rule 5
D. Rule 6
Answer: D
Q107. - (Topic 1)
You are the Security Administrator for ABC-Corp. A Check Point Firewall is installed and in use on SecurePlatform. You are concerned that the system might not be retaining your entries for the interfaces and routing configuration. You would like to verify your entries in the corresponding file(s) on SecurePlatform. Where can you view them? Give the BEST answer.
A. /etc/conf/route.C
B. /etc/sysconfig/network-scripts/ifcfg-ethx
C. /etc/sysconfig/netconf.C
D. /etc/sysconfig/network
Answer: C
Q108. - (Topic 3)
You have a mesh VPN Community configured to create a site-to-site VPN. Given the displayed VPN properties, what can you conclude about this community?
Exhibit:
A. The VPN Community will perform IKE Phase 1 key-exchange encryption using the longest key Security Gateway R77 supports.
B. Changing the setting Perform key exchange encryption with from AES-256 to 3DES will enhance the VPN Community's security , and reduce encryption overhead.
C. Change the data-integrity setting for this VPN Community because MD5 is incompatible with AES.
D. Changing the setting Perform IPsec data encryption with from AES-128 to 3Des will increase the encryption overhead.
Answer: D
Q109. - (Topic 3)
Captive Portal is a __________ that allows the gateway to request login information from the user.
A. LDAP server add-on
B. Transparent network inspection tool
C. Separately licensed feature
D. Pre-configured and customizable web-based tool
Answer: D
Q110. - (Topic 3)
All R77 Security Servers can perform authentication with the exception of one. Which of the Security Servers can NOT perform authentication?
A. RLOGIN
B. HTTP
C. SMTP
D. FTP
Answer: C
