• Home
  • Articles
  • [Nov-2021] Practice CheckPoint 156-915.80 exam. Online Exam Practice Tests with detailed explanations! Pass 156-915.80 with confidence! [Q287-Q305]

[Nov-2021] Practice CheckPoint 156-915.80 exam. Online Exam Practice Tests with detailed explanations! Pass 156-915.80 with confidence! [Q287-Q305]

Share

Practice CCSE Update 156-915.80 exam. Online Exam Practice Tests with detailed explanations! Pass 156-915.80 with confidence!

156-915.80 - Check Point Certified Security Expert Update - R80 Practice Tests 2021 | TestKingFree

NEW QUESTION 287
You want to verify if your management server is ready to upgrade to R80.10. What tool could you use in this process?

  • A. pre_upgrade_verifier
  • B. migrate import
  • C. upgrade_tools verify
  • D. migrate export

Answer: A

 

NEW QUESTION 288
Full synchronization between cluster members is handled by Firewall Kernel. Which port is used for this?

  • A. TCP port 256
  • B. UDP port 256
  • C. TCP port 265
  • D. UDP port 265

Answer: A

Explanation:
Synchronization works in two modes:

 

NEW QUESTION 289
What does the command vpn crl__zapdo?

  • A. Erases all CRL's from the gateway cache
  • B. Erases VPN certificates from cache
  • C. Nothing, it is not a valid command
  • D. Erases CRL's from the management server cache

Answer: A

Explanation:
Explanation/Reference:
Reference: https://indeni.com/check-point-firewalls-certification-revocation-list-crl-check-mechanism-on-a- check-point-gateway/

 

NEW QUESTION 290
You need to change the number of firewall instances used by CoreXL. How can you achieve this goal?

  • A. cpconfig: reboot not required
  • B. edit fwaffinity.conf; reboot required
  • C. edit fwaffinity.conf; reboot not required
  • D. cpconfig; reboot required

Answer: D

 

NEW QUESTION 291
Automation and Orchestration differ in that:

  • A. Automation involves the process of coordinating and exchange of information through web service interactions such as XML and JSON, but orchestration does not involve processes.
  • B. Orchestration is concerned with executing a single task, whereas automation takes a series of tasks and puts them all together into a process workflow.
  • C. Automation relates to codifying tasks, whereas orchestration relates to codifying processes.
  • D. Orchestration relates to codifying tasks, whereas automation relates to codifying processes.

Answer: C

 

NEW QUESTION 292
In SPLAT the command to set the timeout was idle. In order to achieve this and increase the timeout for Gaia, what command do you use?

  • A. set idle <value>
  • B. set timeout <value>
  • C. set inactivity-timeout <value>
  • D. set inactivity <value>

Answer: C

 

NEW QUESTION 293
Which of the following is a task of the CPD process?

  • A. Invoke and monitor critical processes and attempts to restart them if they fail
  • B. Log forwarding
  • C. Transfers messages between Firewall processes
  • D. Responsible for processing most traffic on a security gateway

Answer: C

 

NEW QUESTION 294
What is the purpose of Priority Delta in VRRP?

  • A. When a box fail, Effective Priority = Priority - Priority Delta
  • B. When an Interface is up, Effective Priority = Priority + Priority Delta
  • C. When a box is up, Effective Priority = Priority + Priority Delta
  • D. When an Interface fail, Effective Priority = Priority - Priority Delta

Answer: D

Explanation:
Explanation/Reference:
Explanation:
Each instance of VRRP running on a supported interface may monitor the link state of other interfaces.
The monitored interfaces do not have to be running VRRP. If a monitored interface loses its link state, then VRRP will decrement its priority over a VRID by the specified delta value and then will send out a new VRRP HELLO packet. If the new effective priority is less than the priority a backup platform has, then the backup platform will beging to send out its own HELLO packet. Once the master sees this packet with a priority greater than its own, then it releases the VIP.
Reference: https://supportcenter.checkpoint.com/supportcenter/portal?
eventSubmit_doGoviewsolutiondetails=&solutionid=sk38524

 

NEW QUESTION 295
Check Point APIs allow system engineers and developers to make changes to their organization's security policy with CLI tools and Web Services for all of the following except?

  • A. Create new dashboards to manage 3rd party task
  • B. Create products that use and enhance 3rd party solutions.
  • C. Execute automated scripts to perform common tasks.
  • D. Create products that use and enhance the Check Point Solution.
    Check Point APIs let system administrators and developers make changes to the security policy with CLI tools and web-services. You can use an API to:
    * Use an automated script to perform common tasks
    * Integrate Check Point products with 3rd party solutions
    * Create products that use and enhance the Check Point solution

Answer: A

 

NEW QUESTION 296
You are MegaCorp's Security Administrator. There are various network objects which must be NATed. Some of them use the Automatic Hide NAT method, while others use the Automatic Static NAT method. What is the rule order if both methods are used together?
Give the BEST answer.

  • A. The rule position depends on the time of their creation. The rules created first are placed at the top; rules created later are placed successively below the others.
  • B. The Hide NAT rules have priority over the Static NAT rules and the NAT on a node has priority over the NAT on a network or an address range.
  • C. The Administrator decides the rule order by shifting the corresponding rules up and down.
  • D. The Static NAT rules have priority over the Hide NAT rules and the NAT on a node has priority over the NAT on a network or an address range.

Answer: D

 

NEW QUESTION 297
Your perimeter Security Gateway's external IP is 200.200.200.3. Your network diagram shows:

Required: Allow only network 192.168.10.0 and 192.168.20.0 to go out to the Internet, using 200.200.200.5.
The local network 192.168.1.0/24 needs to use 200.200.200.3 to go out to the Internet.
Assuming you enable all the settings in the NAT page of Global Properties, how could you achieve these requirements?

  • A. Create two network objects: 192.168.10.0/24 and 192.168.20.0/24. Add the two network objects to a group object. Create a manual NAT rule like the following: Original source - group object; Destination - any; Service - any; Translated source - 200.200.200.5; Destination - original; Service - original.
  • B. Create an Address Range object, starting from 192.168.10.1 to 192.168.20.254. Enable Hide NAT on the NAT page of the address range object. Enter Hiding IP address
    2 00.200.200.5. Add an ARP entry for 200.200.200.5 for the MAC address of
    2 00.200.200.3.
  • C. Create a network object 192.168.0.0/16. Enable Hide NAT on the NAT page. Enter
    2 00.200.200.5 as the hiding IP address. Add an ARP entry for 200.200.200.5 for the MAC address of 200.200.200.3.
  • D. Create network objects for 192.168.10.0/24 and 192.168.20.0/24. Enable Hide NAT on both network objects, using 200.200.200.5 as hiding IP address. Add an ARP entry for
    200.200.200.3 for the MAC address of 200.200.200.5.

Answer: B

 

NEW QUESTION 298
You need to see which hotfixes are installed on your gateway, which command would you use?

  • A. cpinfo -h all
  • B. cpinfo -y all
  • C. cpinfo -o hotfix
  • D. cpinfo -l hotfix

Answer: B

Explanation:
Reference:
eventSubmit_doGoviewsolutiondetails=&solutionid=sk72800

 

NEW QUESTION 299
Which of the following commands shows the status of processes?

  • A. cpwd_admin list
  • B. cpwd admin_list
  • C. cpwd -l
  • D. cpwd_admin -l

Answer: A

Explanation:
Reference: https://community.checkpoint.com/thread/8054-cpwdadmin-list-overview-sms

 

NEW QUESTION 300
You are running a R80 Security Gateway on GAiA.
In case of a hardware failure, you have a server with the exact same hardware and firewall version installed. What back up method could be used to quickly put the secondary firewall into production?

  • A. backup
  • B. upgrade_export
  • C. snapshot
  • D. manual backup

Answer: C

 

NEW QUESTION 301
Which one of these features is NOT associated with the Check Point URL Filtering and Application Control Blade?

  • A. Use UserCheck to help users understand that certain websites are against the company's security policy.
  • B. Configure rules to limit the available network bandwidth for specified users or groups.
  • C. Detects and blocks malware by correlating multiple detection engines before users are affected.
  • D. Make rules to allow or block applications and Internet sites for individual applications, categories, and risk levels.

Answer: C

Explanation:
Explanation
Use the URL Filtering and Application Control Software Blades to:
* Create a Granular Policy - Make rules to allow or block applications and Internet sites for individual applications, categories, and risk levels. You can also create an HTTPS policy that enables Security Gateways to inspect HTTPS traffic and prevent security risks related to the SSL protocol.
* Manage Bandwidth Consumption - Configure rules to limit the available network bandwidth for specified users or groups. You can define separate limits for uploading and downloading.
* Keep Your Policies Updated - The Application Database is updated regularly, which helps you makes sure that your Internet security policy has the newest applications and website categories. Security Gateways connect to the Check Point Online Web Service to identify new social networking widgets and website categories.
* Communicate with Users - UserCheck objects add flexibility to URL Filtering and Application Control and let the Security Gateways communicate with users. UserCheck helps users understand that certain websites are against the company's security policy. It also tells users about the changes in Internet policy related to websites and applications.

 

NEW QUESTION 302
During inspection of your Threat Prevention logs you find four different computers having one event each with a Critical Severity. Which of those hosts should you try to remediate first?

  • A. Host having a Critical event found by Antivirus
  • B. Host having a Critical event found by Threat Emulation
  • C. Host having a Critical event found by IPS
  • D. Host having a Critical event found by Anti-Bot

Answer: D

 

NEW QUESTION 303
How can SmartView Web application be accessed?

  • A. https://<Security <Management IP Address>:4434/smartview/
  • B. https://<Security <Management IP Address>/smartview
  • C. https://<Security <Management host name>:4434/smartview/
  • D. https://<Security < Management host name>/smartview/

Answer: B

 

NEW QUESTION 304
What is the recommended number of physical network interfaces in a Mobile Access cluster deployment?

  • A. 1 interface - an interface leading to the organization and the Internet, and configure for synchronization
  • B. 2 interfaces - a data interface leading to the organization and the Internet, a second interface for synchronization
  • C. 3 Interfaces - an interface leading to the organization, a second interface leading to the internet, a third interface for synchronization
  • D. 4 Interfaces - an interface leading to the organization, a second interface leading to the internet, a third interface for synchronization, a fourth interface leading to the Security Management Server.

Answer: C

 

NEW QUESTION 305
......

The best 156-915.80 exam study material and preparation tool is here: https://www.testkingfree.com/CheckPoint/156-915.80-practice-exam-dumps.html

 

Related Articles

more
CheckPoint 156-915.80 Certification Practice Exam