View All 156-215.80 Actual Exam Questions, Answers and Explanations for Free 156-215.80 Exam Free Practice Test with100% Accurate Answers NEW QUESTION 55 Choose the SmartLog property that is TRUE. A. SmartLog and SmartView Tracker are mutually exclusive. B. SmartLog has been an option since release R71.10. C. SmartLog is a client of SmartConsole that enables enterprises to centrally track log records [...]

All Products Contact now

View All 156-215.80 Actual Exam Questions, Answers and Explanations for Free [Q55-Q80]

Share

View All 156-215.80 Actual Exam Questions, Answers and Explanations for Free

156-215.80 Exam Free Practice Test with100% Accurate Answers

NEW QUESTION 55
Choose the SmartLog property that is TRUE.

  • A. SmartLog and SmartView Tracker are mutually exclusive.
  • B. SmartLog has been an option since release R71.10.
  • C. SmartLog is a client of SmartConsole that enables enterprises to centrally track log records and security
    activity with Google-like search.
  • D. SmartLog is not a Check Point product.

Answer: C

 

NEW QUESTION 56
Where do we need to reset the SIC on a gateway object?

  • A. SmartDashboard > Edit Gateway Object > General Properties > Communication
  • B. SmartUpdate > Edit Gateway Object > Communication
  • C. SmartDashboard > Edit Security Management Server Object > SIC
  • D. SmartUpdate > Edit Security Management Server Object > SIC

Answer: A

 

NEW QUESTION 57
The command __________ provides the most complete restoration of a R80 configuration.

  • A. cpconfig
  • B. upgrade_import
  • C. fwm dbimport -p <export file>
  • D. cpinfo -recover

Answer: B

Explanation:
Explanation
(Should be "migrate import")
"migrate import" Restores backed up configuration for R80 version, in previous versions the command was " upgrade_import ".

 

NEW QUESTION 58
Fill in the blanks: Default port numbers for an LDAP server is ______ for standard connections and _______ SSL connections.

  • A. 389, 636
  • B. 675, 389
  • C. 636, 290
  • D. 290, 675

Answer: A

Explanation:
Explanation
A client starts an LDAP session by connecting to an LDAP server, called a Directory System Agent (DSA), by default on TCP and UDP port 389, or on port 636 for LDAPS. Global Catalog is available by default on ports
3268, and 3269 for LDAPS.

 

NEW QUESTION 59
What needs to be configured if the NAT property 'Translate destination on client side' is not enabled in Global properties?

  • A. Enabling 'Allow bi-directional NAT' for NAT to work correctly
  • B. Use the file local.arpto add the ARP entries for NAT to work
  • C. A host route to route to the destination IP
  • D. Nothing, the Gateway takes care of all details necessary

Answer: D

 

NEW QUESTION 60
Jack works for a managed service provider and he has been tasked to create 17 new policies for several new customers. He does not have much time. What is the BEST way to do this with R80 security management?

  • A. Create a text-file with mgmt_cli script that creates all objects and policies. Open the file in SmartConsole Command Line to run it.
  • B. Create a text-file with Gaia CLI -commands in order to create all objects and policies. Run the file in CLISH with command load configuration.
  • C. Use Object Explorer in SmartConsole to create the objects and Manage Policies from the menu to create the policies.
  • D. Create a text-file with DBEDIT script that creates all objects and policies. Run the file in the command line of the management server using command dbedit -f.

Answer: A

Explanation:
Explanation
Did you know: mgmt_cli can accept csv files as inputs using the --batch option.
The first row should contain the argument names and the rows below it should hold the values for these parameters.
So an equivalent solution to the powershell script could look like this:
data.csv:

mgmt_cli add host --batch data.csv -u <username> -p <password> -m <management server> This can work with any type of command not just "add host" : simply replace the column names with the ones relevant to the command you need.

 

NEW QUESTION 61
You want to reset SIC between smberlin and sgosaka.

In SmartDashboard, you choose sgosaka, Communication, Reset. On sgosaka, you start cpconfig, choose Secure Internal Communication and enter the new SIC Activation Key. The screen reads The SIC was successfully initialized and jumps back to the menu. When trying to establish a connection, instead of a working connection, you receive this error message:

What is the reason for this behavior?

  • A. The check Point services on the Gateway were not restarted because you are still in the cpconfig utility.
  • B. The Gateway was not rebooted, which is necessary to change the SIC key.
  • C. You must first initialize the Gateway object in SmartDashboard (i.e., right-click on the object, choose Basic Setup > Initialize).
  • D. The activation key contains letters that are on different keys on localized keyboards. Therefore, the activation can not be typed in a matching fashion.

Answer: A

 

NEW QUESTION 62
How many sessions can be opened on the Management Server at the same time?

  • A. Unlimited, One per administrator
  • B. One
  • C. Unlimited, One per each licensed Gateway
  • D. Unlimited, Multiple per administrator

Answer: A

 

NEW QUESTION 63
Review the rules. Assume domain UDP is enabled in the implied rules.

What happens when a user from the internal network tries to browse to the internet using HTTP? The user:

  • A. can connect to the Internet successfully after being authenticated.
  • B. can go to the Internet, without being prompted for authentication.
  • C. can go to the Internet after Telnetting to the client authentication daemon port 259.
  • D. is prompted three times before connecting to the Internet successfully.

Answer: B

 

NEW QUESTION 64
You want to reset SIC between smberlin and sgosaka.

In SmartDashboard, you choose sgosaka, Communication, Reset. On sgosaka, you start cpconfig, choose Secure Internal Communication and enter the new SIC Activation Key. The screen reads The SIC was successfully initialized and jumps back to the menu. When trying to establish a connection, instead of a working connection, you receive this error message:

What is the reason for this behavior?

  • A. The check Point services on the Gateway were not restarted because you are still in the cpconfig utility.
  • B. The Gateway was not rebooted, which is necessary to change the SIC key.
  • C. You must first initialize the Gateway object in SmartDashboard (i.e., right-click on the object, choose Basic Setup > Initialize).
  • D. The activation key contains letters that are on different keys on localized keyboards. Therefore, the activation can not be typed in a matching fashion.

Answer: A

 

NEW QUESTION 65
Which statement is TRUE of anti-spoofing?

  • A. It is more secure to create anti-spoofing groups manually
  • B. With dynamic routing enabled, anti-spoofing groups are updated automatically whenever there is a routing change
  • C. It is BEST Practice to have anti-spoofing groups in sync with the routing table
  • D. Anti-spoofing is not needed when IPS software blade is enabled

Answer: C

Explanation:
Explanation

 

NEW QUESTION 66
The SIC Status "Unknown" means

  • A. There is connection between the gateway and Security Management Server but it is not trusted.
  • B. There is no connection between the gateway and Security Management Server.
  • C. The secure communication is established.
  • D. The Security Management Server can contact the gateway, but cannot establish SIC.

Answer: B

Explanation:
Explanation/Reference:
Explanation:
SIC Status
After the gateway receives the certificate issued by the ICA, the SIC status shows if the Security Management Server can communicate securely with this gateway:
Communicating - The secure communication is established.
Unknown - There is no connection between the gateway and Security Management Server.
Not Communicating - The Security Management Server can contact the gateway, but cannot establish SIC. A message shows more information.
Reference: https://sc1.checkpoint.com/documents/R80/CP_R80_SecMGMT/html_frameset.htm?
topic=documents/R80/CP_R80_SecMGMT/125443

 

NEW QUESTION 67
Which information is included in the "Full Log" tracking option, but is not included in the
"Log" tracking option?

  • A. file attributes
  • B. application information
  • C. destination port
  • D. data type information

Answer: D

 

NEW QUESTION 68
You want to define a selected administrator's permission to edit a layer. However, when you click the + sign in the "Select additional profile that will be able edit this layer" you do not see anything. What is the most likely cause of this problem? Select the BEST answer.

  • A. There are no permission profiles available and you need to create one first.
  • B. "Edit layers by Software Blades" is unselected in the Permission Profile
  • C. "Edit layers by selected profiles in a layer editor" is unselected in the Permission profile.
  • D. All permission profiles are in use.

Answer: A

 

NEW QUESTION 69
The _____ software blade package uses CPU-level and OS-level sandboxing in order to delect and block malware.

  • A. Next Generation Threat Prevention
  • B. Next Generation Threat Extraction
  • C. Next Generation Firewall
  • D. Next Generation Threat Emulation

Answer: D

 

NEW QUESTION 70
Access roles allow the firewall administrator to configure network access according to:

  • A. users and user groups
  • B. all of above
  • C. a combination of computer groups and network
  • D. remote access clients

Answer: B

Explanation:
Explanation/Reference:
Explanation:
To create an access role:
1. Select Users and Administrators in the Objects Tree.
2. Right-click Access Roles > New Access Role.
The Access Role window opens.
3. Enter a Name and Comment (optional) for the access role.
4. In the Networks tab, select one of these:
Any network

Specific networks - Click the plus sign and select a network.

Your selection is shown in the Networks node in the Role Preview pane.
5. In the Users tab, select one of these:
Any user

All identified users - Includes users identified by a supported authentication method (internal users,

AD users or LDAP users).
Specific users - Click the plus sign.

A window opens. You can search for Active Directory entries or select them from the list.
6. In the Machines tab, select one of these:
Any machine

All identified machines - Includes machines identified by a supported authentication method (AD).

Specific machines - Click the plus sign.

You can search for AD entries or select them from the list.
7. Optional: For computers that use Full Identity Agents, from the Machines tab select Enforce IP spoofing protection.
8. Click OK.
The access role is added to the Users and Administrators tree.
Reference: https://sc1.checkpoint.com/documents/R76/CP_R76_Firewall_WebAdmin/92705.htm

 

NEW QUESTION 71
Fill in the blanks: Default port numbers for an LDAP server is ______ for standard connections and
_______ SSL connections.

  • A. 389, 636
  • B. 675, 389
  • C. 636, 290
  • D. 290, 675

Answer: A

Explanation:
A client starts an LDAP session by connecting to an LDAP server, called a Directory System Agent (DSA), by default on TCP and UDP port 389, or on port 636 for LDAPS. Global Catalog is available by default on ports 3268, and 3269 for LDAPS.

 

NEW QUESTION 72
An Endpoint identity agent uses a ___________ for user authentication.

  • A. Certificate
  • B. Token
  • C. Shared secret
  • D. Username/password or Kerberos Ticket

Answer: D

Explanation:
Explanation/Reference: https://sc1.checkpoint.com/documents/R76/
CP_R76_IdentityAwareness_AdminGuide/62050.htm

 

NEW QUESTION 73
The CDT utility supports which of the following?

  • A. Only Jumbo HFA's and hotfixes
  • B. All upgrades
  • C. Only major version upgrades to R80.10
  • D. Major version upgrades to R77.30

Answer: B

Explanation:
Explanation
Explanation/Reference: https://supportcenter.checkpoint.com/supportcenter/portal?
eventSubmit_doGoviewsolutiondetails=&solutionid=sk97443

 

NEW QUESTION 74
How can the changes made by an administrator before publishing the session be seen by a superuser administrator?

  • A. By impersonating the administrator with the 'Login as...' option
  • B. They cannot be seen
  • C. From the SmartView Tracker audit log
  • D. From Manage and Settings > Sessions, right click on the session and click 'View Changes...'

Answer: C

 

NEW QUESTION 75
Which Check Point software blade prevents malicious files from entering a network using virus signatures and anomaly-based protections from ThreatCloud?

  • A. Anti-spam and Email Security
  • B. Antivirus
  • C. Application Control
  • D. Firewall

Answer: B

Explanation:
Explanation/Reference:
Explanation: The enhanced Check Point Antivirus Software Blade uses real-time virus signatures and anomaly-based protections from ThreatCloud™, the first collaborative network to fight cybercrime, to detect and block malware at the gateway before users are affected.
Reference: https://www.checkpoint.com/products/antivirus-software-blade/

 

NEW QUESTION 76
The IT Management team is interested in the new features of the Check Point R80 Management and wants to upgrade but they are concerned that the existing R77.30 Gaia Gateways cannot be managed by R80 because it is so different. As the administrator responsible for the Firewalls, how can you answer or confirm these concerns?

  • A. R80 Management cannot manage earlier versions of Check Point Gateways prior to R80. Only R80 and above Gateways can be managed. Consult the R80 Release Notes for more information.
  • B. R80 Management contains compatibility packages for managing earlier versions of Check Point Gateways prior to R80. Consult the R80 Release Notes for more information.
  • C. R80 Management requires the separate installation of compatibility hotfix packages for managing the earlier versions of Check Point Gateways prior to R80. Consult the R80 Release Notes for more information.
  • D. R80 Management was designed as a completely different Management system and so can only monitor Check Point Gateways prior to R80.

Answer: B

Explanation:
Explanation/Reference:
Explanation:

Reference: http://dl3.checkpoint.com/paid/1f/1f7e21da67aa992954aa12a0a84e53a8/ CP_R80_ReleaseNotes.pdf?HashKey=1479838085_d6ffcb36c6a3128708b3f6d7bcc4f94e&xtn=.pdf

 

NEW QUESTION 77
When Identity Awareness is enabled, which identity source(s) is(are) used for Application Control?

  • A. RADIUS
  • B. AD Query and Browser-based Authentication
  • C. Remote Access and RADIUS
  • D. AD Query

Answer: B

Explanation:
Explanation/Reference:
Explanation: Identity Awareness gets identities from these acquisition sources:
AD Query

Browser-Based Authentication

Endpoint Identity Agent

Terminal Servers Identity Agent

Remote Access

Reference:
https://sc1.checkpoint.com/documents/R76/CP_R76_IdentityAwareness_AdminGuide/62007.htm

 

NEW QUESTION 78
Joey wants to configure NTP on R80 Security Management Server. He decided to do this via WebUI. What is the correct address to access the Web UI for Gaia platform via browser?

  • A. https://<Device_IP_Address>:443
  • B. https://<Device_IP_Address>:4434
  • C. https://<Device_IP_Address>
  • D. https://<Device_IP_Address>:10000

Answer: C

Explanation:
Access to Web UI Gaia administration interface, initiate a connection from a browser to the default administration IP address: Logging in to the WebUI Logging in To log in to the WebUI:
https://<Gaia IP address>

 

NEW QUESTION 79
On the following graphic, you will find layers of policies.

What is a precedence of traffic inspection for the defined polices?

  • A. A packet arrives at the gateway, it is checked against the rules in the networks policy layer and then if implicit Drop Rule drops the packet, it comes next to IPS layer and then after accepting the packet it passes to Threat Prevention layer.
  • B. A packet arrives at the gateway, it is checked against the rules in IPS policy layer and then it comes next to the Network policy layer and then after accepting the packet it passes to Threat Prevention layer.
  • C. A packet arrives at the gateway, it is checked against the rules in the networks policy layer and then if there is any rule which accepts the packet, it comes next to IPS layer and then after accepting the packet it passes to Threat Prevention layer
  • D. A packet arrives at the gateway, it is checked against the rules in the networks policy layer and then if there is any rule which accepts the packet, it comes next to Threat Prevention layer and then after accepting the packet it passes to IPS layer.

Answer: C

Explanation:
To simplify Policy management, R80 organizes the policy into Policy Layers. A layer is a set of rules, or a Rule Base.
For example, when you upgrade to R80 from earlier versions:
When the gateway matches a rule in a layer, it starts to evaluate the rules in the next layer.
All layers are evaluated in parallel

 

NEW QUESTION 80
......

156-215.80 dumps Free Test Engine Verified By It Certified Experts: https://www.guidetorrent.com/156-215.80-pdf-free-download.html

Related Articles

more
CheckPoint 156-215.80 Certification Practice Exam