156-915.80試験無料問題集（500題）「CheckPoint Check Point Certified Security Expert Update

出題：1

The Event List within the Events tab contains:

A. a list of options available for running a query.

B. the top events, destinations, sources, and users of the query results, either as a chart or in a tallied list.

C. the details of a selected event.

D. events generated by a query.

正解：D 解答を投票する

解説: (GoShiken メンバーにのみ表示されます)

出題：2

CPM process stores objects, policies, users, administrators, licenses and management data in a database. This database is:

A. MarisDB

B. SOLR

C. MySQL

D. Postgres SQL

正解：D 解答を投票する

出題：3

The system administrator of a company is trying to find out why acceleration is not working for the traffic. The traffic is allowed according to the rule base and checked for viruses. But it is not accelerated. What is the most likely reason that the traffic is not accelerated?

A. The traffic is originating from the gateway itself.

B. Acceleration is not enabled.

C. There is a virus found. Traffic is still allowed but not accelerated.

D. The connection required a Security server.

正解：A 解答を投票する

出題：4

The CDT utility supports which of the following?

A. All upgrades

B. Major version upgrades to R77.30

C. Only Jumbo HFA's and hotfixes

D. Only major version upgrades to R80.10

正解：A 解答を投票する

解説: (GoShiken メンバーにのみ表示されます)

出題：5

In terms of Order Rule Enforcement, when a packet arrives at the gateway, the gateway checks it against the rules in the top Policy Layer, sequentially from top to bottom. Which of the following statements is correct?

A. If the Action of the matching rule is Drop, the gateway continues to check rules in the next Policy Layer down. 57D5D1DDCBD40AB3BF70D5D

B. If the rule does not matched in the Network policy it will continue to other enabled policies

C. If the Action of the matching rule is Drop, the gateway stops matching against later rules in the Policy Rule Base and drops the packet.

D. If the Action of the matching rule is Accept, the gateway will drop the packet.

正解：C 解答を投票する

出題：6

The SmartEvent R80 Web application for real-time event monitoring is called:

A. SmartView Monitor

B. SmartView

C. There is no Web application for SmartEvent

D. SmartEventWeb

正解：A 解答を投票する

出題：7

What are you required to do before running the command upgrade_export?

A. Run a cpstop on the Security Management Server.

B. Close all GUI clients.

C. Run cpconfig and set yourself up as a GUI client.

D. Run a cpstop on the Security Gateway.

正解：B 解答を投票する

出題：8

Your expanding network currently includes ClusterXL running Multicast mode on two members, as shown in this topology:
Exhibit:

You need to add interfaces: 10.10.10.1/24 on Member A, and 10.10.10.2/24 on Member B.
The virtual IP address for these interfaces is 10.10.10.3/24. Both cluster gateways have a Quad card with an available eth3 interface. What is the correct procedure to add these interfaces?

A. 1. Configure the new interface on both members using WebUI.2. Update the new topology in the cluster object from SmartDashboard.3. Define virtual IP in the Dashboard4. Install the Security Policy.

B. 1. Disable "Cluster membership" from one Gateway via cpconfig.2. Configure the new interface via sysconfig from the "non-member" Gateway.3. Re-enable "Cluster membership" on the Gateway.4. Perform the same steps on the other Gateway.5. Update the topology in the cluster object.6. Install the Security Policy.

C. 1. Use the command ifconfig to configure and enable the new interface on both members.2. Update the topology in the cluster object for the cluster and both members.3. Install the Security Policy.4. Reboot the gateway.

D. 1. Use WebUI to configure the new interfaces on both member.2. Update the topology in the cluster object.3. Reboot both gateways.4. Install the Security Policy.

正解：A 解答を投票する

出題：9

What is correct statement about Security Gateway and Security Management Server failover in Check Point R80.X in terms of Check Point Redundancy driven solutions?

A. Security Gateway failover is an automatic procedure but Security Management Server failover is a manual procedure.

B. Security Gateway failover as well as Security Management Server failover is a manual procedure

C. Security Gateway failover is a manual procedure but Security Management Server failover is an automatic procedure.

D. Security Gateway failover as well as Security Management Server failover is an automatic procedure.

正解：A 解答を投票する

出題：10

Full synchronization between cluster members is handled by Firewall Kernel. Which port is used for this?

A. UDP port 265

B. TCP port 256

C. TCP port 265

D. UDP port 256

正解：B 解答を投票する

出題：11

Peter is your new Security Administrator. On his first working day, he is very nervous and enters the wrong password three times. His account is locked. What can be done to unlock Peter's account? Give the BEST answer.

A. It is not possible to unlock Peter's account. You have to install the firewall once again or abstain from Peter's help.

B. You can unlock Peter's account by using the command fwm unlock_admin -u Peter on the Security Gateway.

C. You can unlock Peter's account by using the command fwm lock_admin -u Peter on the Security Management Server.

D. You can unlock Peter's account by using the command fwm unlock_admin -u Peter on the Security Management Server

正解：C 解答を投票する

出題：12

You need to change the MAC-address on eth2 interface of the gateway. What command and what mode will you use to achieve this goal?

A. set interface eth2 mac-addr 11:11:11:11:11:11; CLISH

B. ethtool -i eth2 mac 11:11:11:11:11:11; expert

C. ifconfig eth1 hw 11:11:11:11:11:11; expert

D. set interface eth2 hw-addr 11:11:11:11:11:11; CLISH

正解：A 解答を投票する

出題：13

You have a Gateway is running with 2 cores. You plan to add a second gateway to build a cluster and used a device with 4 cores. How many cores can be used in a Cluster for Firewall-kernel on the new device?

A. 2

B. 1

C. 4

D. 3

正解：C 解答を投票する

出題：14

Review the Rule Base displayed.

For which rules will the connection templates be generated in SecureXL?

A. All rules except Rule 3

B. Rules 2 and 5

C. Rule 2 only

D. Rules 2 through 5

正解：A 解答を投票する

出題：15

Check Point Management (cpm) is the main management process in that it provides the architecture for the consolidated management console. It empowers the migration from legacy Client side logic to Server side-logic. The cpm process:

A. Performs database tasks such as creating, deleting, and modifying objects and compiling as well as policy code generation.

B. Allow GUI Client and management server to communicate via TCP Port 18191

C. Allow GUI Client and management server to communicate via TCP Port 19001

D. Performs database tasks such as creating, deleting, and modifying objects and compiling policy.

正解：D 解答を投票する

出題：16

SandBlast offers businesses flexibility in implementation based on their individual business needs. What is an option for deployment of Check Point SandBlast Zero-Day Protection?

A. Threat Agent Solution

B. Any Cloud Service

C. Smart Cloud Services

D. Public Cloud Services

正解：A 解答を投票する

出題：17

Events can be categorized and assigned to System Administrators to track their path through the workflow. Which of the following is NOT an option?

A. Under Investigation

B. Pending Investigation

C. Open

D. False Positive

正解：C 解答を投票する

出題：18

Fill in the blank. To enter the router shell, use command __________ .

正解：

cligated

出題：19

What is the recommended number of physical network interfaces in a Mobile Access cluster deployment?

A. 3 Interfaces - an interface leading to the organization, a second interface leading to the internet, a third interface for synchronization

B. 2 interfaces - a data interface leading to the organization and the Internet, a second interface for synchronization

C. 1 interface - an interface leading to the organization and the Internet, and configure for synchronization

D. 4 Interfaces - an interface leading to the organization, a second interface leading to the internet, a third interface for synchronization, a fourth interface leading to the Security Management Server.

正解：A 解答を投票する

156-915.80試験無料問題集「CheckPoint Check Point Certified Security Expert Update - R80 認定」