156-315.80 : Check Point Certified Security Expert – R80 : Part 08
-
Which of the following will NOT affect acceleration?
- Connections destined to or originated from the Security gateway
- A 5-tuple match
- Multicast packets
- Connections that have a Handler (ICMP, FTP, H.323, etc.)
-
The following command is used to verify the CPUSE version:
- HostName:0>show installer status build
- [Expert@HostName:0]#show installer status
- [Expert@HostName:0]#show installer status build
- HostName:0>show installer build
-
How do you enable virtual mac (VMAC) on-the-fly on a cluster member?
- cphaprob set int fwha_vmac_global_param_enabled 1
- clusterXL set int fwha_vmac_global_param_enabled 1
- fw ctl set int fwha_vmac_global_param_enabled 1
- cphaconf set int fwha_vmac_global_param_enabled 1
-
To accelerate the rate of connection establishment, SecureXL groups all connection that match a particular service and whose sole differentiating element is the source port. The type of grouping enables even the very first packets of a TCP handshake to be accelerated. The first packets of the first connection on the same service will be forwarded to the Firewall kernel which will then create a template of the connection. Which of the these is NOT a SecureXL template?
- Accept Template
- Deny Template
- Drop Template
- NAT Template
-
Which of the following is NOT a type of Check Point API available in R80.x?
- Identity Awareness Web Services
- OPSEC SDK
- Mobile Access
- Management
-
When an encrypted packet is decrypted, where does this happen?
- Security policy
- Inbound chain
- Outbound chain
- Decryption is not supported
-
You are asked to check the status of several user-mode processes on the management server and gateway. Which of the following processes can only be seen on a Management Server?
- fwd
- fwm
- cpd
- cpwd
-
What scenario indicates that SecureXL is enabled?
- Dynamic objects are available in the Object Explorer
- SecureXL can be disabled in cpconfig
- fwaccel commands can be used in clish
- Only one packet in a stream is seen in a fw monitor packet capture
-
What processes does CPM control?
- Object-Store, Database changes, CPM Process and web-services
- web-services, CPMI process, DLEserver, CPM process
- DLEServer, Object-Store, CP Process and database changes
- web_services, dle_server and object_Store
-
Which encryption algorithm is the least secured?
- AES-128
- AES-256
- DES
- 3DES
-
What is the command to check the status of the SmartEvent Correlation Unit?
- fw ctl get int cpsead_stat
- cpstat cpsead
- fw ctl stat cpsemd
- cp_conf get_stat cpsemd
-
You need to see which hotfixes are installed on your Check Point server, which command would you use?
- cpinfo –h all
- cpinfo –o hotfix
- cpinfo –l hotfix
- cpinfo –y all
-
VPN Link Selection will perform the following when the primary VPN link goes down?
- The Firewall will drop the packets.
- The Firewall can update the Link Selection entries to start using a different link for the same tunnel.
- The Firewall will send out the packet on all interfaces.
- The Firewall will inform the client that the tunnel is down.
-
Which of the following links will take you to the SmartView web application?
- https://<Security Management Server host name>/smartviewweb/
- https://<Security Management Server IP Address>/smartview/
- https://<Security Management Server host name>smartviewweb
- https://<Security Management Server IP Address>/smartviewapp
-
Which directory below contains log files?
- /opt/CPSmartlog-R80/log
- /opt/CPshrd-R80/log
- /opt/CPsuite-R80/fw1/log
- /opt/CPsuite-R80/log
-
Which GUI client is supported in R80?
- SmartProvisioning
- SmartView Tracker
- SmartView Monitor
- SmartLog
-
From SecureXL perspective, what are the three paths of traffic flow:
- Initial Path; Medium Path; Accelerated Path
- Layer Path; Blade Path; Rule Path
- Firewall Path; Accept Path; Drop Path
- Firewall Path; Accelerated Path; Medium Path
-
To enable Dynamic Dispatch on Security Gateway without the Firewall Priority Queues, run the following command in Expert mode and reboot:
- fw ctl Dyn_Dispatch on
- fw ctl Dyn_Dispatch enable
- fw ctl multik prioq 2
- fw ctl multik set_mode 1
-
What is the protocol and port used for Health Check and State Synchronization in ClusterXL?
- CCP and 18190
- CCP and 257
- CCP and 8116
- CPC and 8116
-
Which command shows the current connections distributed by CoreXL FW instances?
- fw ctl multik stat
- fw ctl affinity -l
- fw ctl instances -v
- fw ctl iflist
Subscribe
0 Comments
Newest