156-315.80 : Check Point Certified Security Expert – R80 : Part 08

  1. Which of the following will NOT affect acceleration?

    • Connections destined to or originated from the Security gateway
    • A 5-tuple match
    • Multicast packets
    • Connections that have a Handler (ICMP, FTP, H.323, etc.)
  2. The following command is used to verify the CPUSE version:

    • HostName:0>show installer status build
    • [Expert@HostName:0]#show installer status
    • [Expert@HostName:0]#show installer status build
    • HostName:0>show installer build
  3. How do you enable virtual mac (VMAC) on-the-fly on a cluster member?

    • cphaprob set int fwha_vmac_global_param_enabled 1
    • clusterXL set int fwha_vmac_global_param_enabled 1
    • fw ctl set int fwha_vmac_global_param_enabled 1
    • cphaconf set int fwha_vmac_global_param_enabled 1
  4. To accelerate the rate of connection establishment, SecureXL groups all connection that match a particular service and whose sole differentiating element is the source port. The type of grouping enables even the very first packets of a TCP handshake to be accelerated. The first packets of the first connection on the same service will be forwarded to the Firewall kernel which will then create a template of the connection. Which of the these is NOT a SecureXL template?

    • Accept Template
    • Deny Template
    • Drop Template
    • NAT Template
  5. Which of the following is NOT a type of Check Point API available in R80.x?

    • Identity Awareness Web Services
    • OPSEC SDK
    • Mobile Access
    • Management
  6. When an encrypted packet is decrypted, where does this happen?

    • Security policy
    • Inbound chain
    • Outbound chain
    • Decryption is not supported
  7. You are asked to check the status of several user-mode processes on the management server and gateway. Which of the following processes can only be seen on a Management Server?

    • fwd
    • fwm
    • cpd
    • cpwd
  8. What scenario indicates that SecureXL is enabled?

    • Dynamic objects are available in the Object Explorer
    • SecureXL can be disabled in cpconfig
    • fwaccel commands can be used in clish
    • Only one packet in a stream is seen in a fw monitor packet capture
  9. What processes does CPM control?

    • Object-Store, Database changes, CPM Process and web-services
    • web-services, CPMI process, DLEserver, CPM process
    • DLEServer, Object-Store, CP Process and database changes
    • web_services, dle_server and object_Store
  10. Which encryption algorithm is the least secured?

    • AES-128
    • AES-256
    • DES
    • 3DES
  11. What is the command to check the status of the SmartEvent Correlation Unit?

    • fw ctl get int cpsead_stat
    • cpstat cpsead
    • fw ctl stat cpsemd
    • cp_conf get_stat cpsemd
  12. You need to see which hotfixes are installed on your Check Point server, which command would you use?

    • cpinfo –h all
    • cpinfo –o hotfix
    • cpinfo –l hotfix
    • cpinfo –y all
  13. VPN Link Selection will perform the following when the primary VPN link goes down?

    • The Firewall will drop the packets.
    • The Firewall can update the Link Selection entries to start using a different link for the same tunnel.
    • The Firewall will send out the packet on all interfaces.
    • The Firewall will inform the client that the tunnel is down.
  14. Which of the following links will take you to the SmartView web application?

    • https://<Security Management Server host name>/smartviewweb/
    • https://<Security Management Server IP Address>/smartview/
    • https://<Security Management Server host name>smartviewweb
    • https://<Security Management Server IP Address>/smartviewapp
  15. Which directory below contains log files?

    • /opt/CPSmartlog-R80/log
    • /opt/CPshrd-R80/log
    • /opt/CPsuite-R80/fw1/log
    • /opt/CPsuite-R80/log
  16. Which GUI client is supported in R80?

    • SmartProvisioning
    • SmartView Tracker
    • SmartView Monitor
    • SmartLog
  17. From SecureXL perspective, what are the three paths of traffic flow:

    • Initial Path; Medium Path; Accelerated Path
    • Layer Path; Blade Path; Rule Path
    • Firewall Path; Accept Path; Drop Path
    • Firewall Path; Accelerated Path; Medium Path
  18. To enable Dynamic Dispatch on Security Gateway without the Firewall Priority Queues, run the following command in Expert mode and reboot:

    • fw ctl Dyn_Dispatch on
    • fw ctl Dyn_Dispatch enable
    • fw ctl multik prioq 2
    • fw ctl multik set_mode 1
  19. What is the protocol and port used for Health Check and State Synchronization in ClusterXL?

    • CCP and 18190
    • CCP and 257
    • CCP and 8116
    • CPC and 8116
  20. Which command shows the current connections distributed by CoreXL FW instances?

    • fw ctl multik stat
    • fw ctl affinity -l
    • fw ctl instances -v
    • fw ctl iflist
Subscribe
Notify of
guest
0 Comments
Newest
Oldest Most Voted
Inline Feedbacks
View all comments