How Many Questions Of 156-315.80 Questions

NEW QUESTION 1
An administrator would like to troubleshoot why templating is not working for some traffic. How can he determine at which rule templating is disabled?

• A. He can use the fw accel stat command on the gateway.
• B. He can use the fw accel statistics command on the gateway.
• C. He can use the fwaccel stat command on the Security Management Server.
• D. He can use the fwaccel stat command on the gateway

Answer: D

NEW QUESTION 2
Which NAT rules are prioritized first?

• A. Post-Automatic/Manual NAT rules
• B. Manual/Pre-Automatic NAT
• C. Automatic Hide NAT
• D. Automatic Static NAT

Answer: B

NEW QUESTION 3
In R80.10, how do you manage your Mobile Access Policy?

• A. Through the Unified Policy
• B. Through the Mobile Console
• C. From SmartDashboard
• D. From the Dedicated Mobility Tab

Answer: A

NEW QUESTION 4
Which Check Point software blade provides Application Security and identity control?

• A. Identity Awareness
• B. Data Loss Prevention
• C. URL Filtering
• D. Application Control

Answer: D

NEW QUESTION 5
Fill in the blank: ________ information is included in “Full Log” tracking option, but is not included in “Log” tracking option?

• A. Destination port
• B. Data type
• C. File attributes
• D. Application

Answer: B

NEW QUESTION 6
R80.10 management server can manage gateways with which versions installed?

• A. Versions R77 and higher
• B. Versions R76 and higher
• C. Versions R75.20 and higher
• D. Versions R75 and higher

Answer: C

NEW QUESTION 7
Which command is used to set the CCP protocol to Multicast?

• A. cphaprob set_ccp multicast
• B. cphaconf set_ccp multicast
• C. cphaconf set_ccp no_broadcast
• D. cphaprob set_ccp no_broadcast

Answer: B

NEW QUESTION 8
How many layers make up the TCP/IP model?

• A. 2
• B. 7
• C. 6
• D. 4

Answer: D

NEW QUESTION 9
How do Capsule Connect and Capsule Workspace differ?

• A. Capsule Connect provides a Layer3 VP
• B. Capsule Workspace provides a Desktop with usable applications.
• C. Capsule Workspace can provide access to any application.
• D. Capsule Connect provides Business data isolation.
• E. Capsule Connect does not require an installed application at client.

Answer: A

NEW QUESTION 10
Which command is used to add users to or from existing roles?

• A. Add rba user <User Name> roles <List>
• B. Add rba user <User Name>
• C. Add user <User Name> roles <List>
• D. Add user <User Name>

Answer: A

NEW QUESTION 11
You have a Gateway is running with 2 cores. You plan to add a second gateway to build a cluster and used a device with 4 cores.
How many cores can be used in a Cluster for Firewall-kernel on the new device?

• A. 3
• B. 2
• C. 1
• D. 4

Answer: D

NEW QUESTION 12
Which of the following will NOT affect acceleration?

• A. Connections destined to or originated from the Security gateway
• B. A 5-tuple match
• C. Multicast packets
• D. Connections that have a Handler (ICMP, FTP, H.323, etc.)

Answer: B

NEW QUESTION 13
Which of the following is NOT an alert option?

• A. SNMP
• B. High alert
• C. Mail
• D. User defined alert

Answer: B

NEW QUESTION 14
What is not a purpose of the deployment of Check Point API?

• A. Execute an automated script to perform common tasks
• B. Create a customized GUI Client for manipulating the objects database
• C. Create products that use and enhance the Check Point solution
• D. Integrate Check Point products with 3rd party solution

Answer: B

NEW QUESTION 15
Which encryption algorithm is the least secured?

• A. AES-128
• B. AES-256
• C. DES
• D. 3DES

Answer: C

NEW QUESTION 16
fwssd is a child process of which of the following Check Point daemons?

• A. fwd
• B. cpwd
• C. fwm
• D. cpd

Answer: A

NEW QUESTION 17
What is the mechanism behind Threat Extraction?

• A. This a new mechanism which extracts malicious files from a document to use it as a counter-attack against its sender.
• B. This is a new mechanism which is able to collect malicious files out of any kind of file types to destroy it prior to sending it to the intended recipient.
• C. This is a new mechanism to identify the IP address of the sender of malicious codes and put it into the SAM database (Suspicious Activity Monitoring).
• D. Any active contents of a document, such as JavaScripts, macros and links will be removed from the document and forwarded to the intended recipient, which makes this solution very fast.

Answer: D

NEW QUESTION 18
Which tool provides a list of trusted files to the administrator so they can specify to the Threat Prevention blade that these files do not need to be scanned or analyzed?

• A. ThreatWiki
• B. Whitelist Files
• C. AppWiki
• D. IPS Protections

Answer: B

NEW QUESTION 19
What is the benefit of “tw monitor” over “tcpdump”?

• A. “fw monitor” reveals Layer 2 information, while “tcpdump” acts at Layer 3.
• B. “fw monitor” is also available for 64-Bit operating systems.
• C. With “fw monitor”, you can see the inspection points, which cannot be seen in “tcpdump”
• D. “fw monitor” can be used from the CLI of the Management Server to collect information from multiple gateways.

Answer: C

NEW QUESTION 20
What information is NOT collected from a Security Gateway in a Cpinfo?

• A. Firewall logs
• B. Configuration and database files
• C. System message logs
• D. OS and network statistics

Answer: A

NEW QUESTION 21
......