156-215.70 Check Point Certified Security Administrator Exam Set 2

What action can not be run Smart Update R70?


Options are :

  • Get all the information Gateway
  • reboot Gateway
  • Retrieve the synchronization status (Correct)
  • pre-install the verifier
  • None

Answer : Retrieve the synchronization status

What is the difference SmartView Tracker Tools section R70 and NGX R65?


Options are :

  • Enable Warning Dialogs option is not available for R70.
  • None
  • R70 adds a new option to send ICMP packets to the source / destination address, the log event.
  • Tools section R70 is exactly the same as the Tools section R65.
  • Using the R70, you can select a program to watch packets received. (Correct)

Answer : Using the R70, you can select a program to watch packets received.

You have Security Administrator MegaCorp and those on holiday. One day you receive a call, some connections problems have occurred. Before the holiday, you have set up access to your holiday in Hotel Management Portal. You can see and analyze a variety of objects. Which objects you can create?


Options are :

  • None
  • The network objects, services and internal users
  • .Network objects and services
  • Nothing. Smart Portal access is read-only (Correct)
  • Security rules only

Answer : Nothing. Smart Portal access is read-only

How do you define the destination TCP port service area?


Options are :

  • None
  • Manage Services> New TCP, enter a name and specify the port: X-Y (Correct)
  • Manage Services> New Others offer a name and define the protocol: X-Y
  • Manage Services> New Group, enter a name and add all the service ports range separately Group Object
  • Manage Services> New Others offer a name and define the protocol: 17 Range: X-Y

Answer : Manage Services> New TCP, enter a name and specify the port: X-Y

Check Point Certified Security Expert Exam Set 12

Every R70 component displays the number of packets admitted abandoned, and fell into a specific Security Gateway, real-time?


Options are :

  • Smart Update
  • SmartView status
  • Smart Event
  • None
  • SmartView Monitor (Correct)

Answer : SmartView Monitor

You manage a large, geographically distributed network. Internet connection at a remote site failed over the weekend, and the Security Gateway locally logged more than 48 hours. It is possible that the logs may have consumed most of the free space on your gateway € ™ s hard drive. Every Smart Console application displays the percent of free disk space for the remote security gateway?


Options are :

  • SmartView status
  • None
  • Smart Update
  • SmartView Tracker
  • SmartView Monitor (Correct)

Answer : SmartView Monitor

How do you configure an alert SmartView Monitor?


Options are :

  • The public address can not be configured SmartView Monitor.
  • None
  • By selecting Gateway, and the determination of threshold values. (Correct)
  • Right-clicking on the Gateway and select Properties.
  • Right-clicking on the Gateway and select System Information.

Answer : By selecting Gateway, and the determination of threshold values.

If the Security Gateway implements three hedges, LDAP injection, malware protector, and rejection of the Upper, which Checkpoint permission is required for Smart Update?


Options are :

  • IPS (Correct)
  • Data Loss Prevention
  • None
  • SSL VPN
  • Smart Event Intro

Answer : IPS

You are using Smart Update to retrieve data and perform remote updates R70 Security Gateway. Which of the following statements is false?


Options are :

  • .If SmartDashboard is open package downloads and updates, the update will fail.
  • None
  • Smart Update can ask for information about the license running locally Gateway
  • Smart Update can query the Security Management Server and Gateway product information.
  • The remote installation can be performed without the SVN Foundation package on a remote NG Application Intelligence security gateway. (Correct)

Answer : The remote installation can be performed without the SVN Foundation package on a remote NG Application Intelligence security gateway.

Where is the best place to find information on the links two machines?


Options are :

  • All options are valid
  • There is a security gateway with command FW log.
  • There is a Security Management Server using SmartView Tracker (Correct)
  • None
  • There is a security gateway interface; it gives you detailed access log files, and status information about a flat frame

Answer : There is a Security Management Server using SmartView Tracker

156-215.75 Check Point Certified Security Administrator Exam Set 7

After you install Security Gateway R70, you will notice that one of the Quad port Intel NIC Security Gateway does not fetched Get Topology request. What is the cause and the solution to the most probable?


Options are :

  • None
  • NIC driver is installed, but have not been recognized. Apply the latest Secure Platform R70 Hotfix spare time (HFA).
  • Make sure that the special NIC driver is available, and install. You will be asked for the driver.
  • NIC is faulty. Change it and install.
  • If an interface is not specified, it is not detected. IP address and subnet mask WebUI. (Correct)

Answer : If an interface is not specified, it is not detected. IP address and subnet mask WebUI.

The company has removed some of the logging policy, the rules most commonly used. This was to reduce the load on the Security Management Server and make follow-up contacts break off more easily. What actions would you recommend to get reliable statistics on network traffic using Smart Reporter?


Options are :

  • Set other logging to a separate log server. (Correct)
  • Rotate the field LOG records for each rule
  • Smart Reporter analyzes the network traffic logged in or not.
  • None
  • Network traffic can not be analyzed, the Security Management Server is a large load.

Answer : Set other logging to a separate log server.

One remote control Security Gateway suddenly stops sending logs, and you can not install Gateway Security. All other remote security gateways normally log on to Security Management Server, and the policy does not affect installation. When you click the Test button on the problematic status SIC Gateway object, an error message appears. What is the problem?


Options are :

  • There is no contact between the Security Management Server and the remote gateway. Or routing rules can prevent connection. (Correct)
  • Time is a Security Management Server clock is changed, which will invalidate the remote gateway's certificate.
  • The internal Certificate Authority for Security Management Server object has been removed objects_5_0.C.
  • The remote gateway IP address is changed, thereby depriving the SIC certificate.
  • None

Answer : There is no contact between the Security Management Server and the remote gateway. Or routing rules can prevent connection.

You are going to upgrade to R65 and R70 Software Blades. Do you need new licenses and license strings in this scenario?


Options are :

  • Yes, you need to buy / convert User licenses in the center first and then re-use licenses to upgrade systems with the new software licenses Blades. (Correct)
  • Yes, the update makes automatic conversion User Center but you need to attach the new licenses.
  • No, upgrade will convert all licenses R70.
  • None
  • No, the update retains licenses.

Answer : Yes, you need to buy / convert User licenses in the center first and then re-use licenses to upgrade systems with the new software licenses Blades.

Which of the following service contracts or certificates, software subscription or support contract, is wrong?


Options are :

  • None
  • Full service may apply for only one set of Security Gateway managed by the same Security Management Server.
  • Most software subscription contracts are permanent, and need not be renewed within a given period of time. (Correct)
  • Service contracts can apply for the entire User Center account.
  • The agreement file is stored in the Security Management Server and download all the security gateway during the upgrade process.

Answer : Most software subscription contracts are permanent, and need not be renewed within a given period of time.

You notice a suspicious FTP connection tries to connect to one of the internal hosts. How to prevent it in real time and check it out successfully blocked?


Options are :

  • Highlight suspicious connection SmartView Tracker log book mode. To prevent it using Tools> Block Intruder menu. Follow the log mode, the connection is suspicious in this SmartView Tracker view â € śdroppedâ €.
  • None
  • Highlight suspicious connection SmartView Tracker Active mode. To prevent it using Tools> Block Intruder menu. To observe the active mode, the suspicious connection does not appear again in this SmartView Tracker view. (Correct)
  • Highlight suspicious connection SmartView Tracker Active mode. To prevent it using Tools> Block Intruder menu. To observe the active mode, the connection is suspicious in this SmartView Tracker view â € śdroppedâ €.
  • Highlight suspicious connection SmartView Tracker log book mode. To prevent it using Tools> Block Intruder menu. Follow the log mode, the suspicious connection does not appear again in this SmartView Tracker view.

Answer : Highlight suspicious connection SmartView Tracker Active mode. To prevent it using Tools> Block Intruder menu. To observe the active mode, the suspicious connection does not appear again in this SmartView Tracker view.

156-315.77 Check Point Certified Security Expert Exam Set 9

What are the results of the command: FW Sam [destination IP address]?


Options are :

  • Contacts objective defined is locked without the need to change the security policy.
  • Contacts and from there the target is defined silenced the need to modify the security policy.
  • Contacts and from the target specified is locked without the need to change the security policy. (Correct)
  • None
  • defined objective of connections are locked without the need to modify the security policy

Answer : Contacts and from the target specified is locked without the need to change the security policy.

If Smart Update to update or distribution fails on SecurePlatfom how the system recovered?


Options are :

  • The administrator can return to a previously created image (if any) command cprinstall snapshot of .
  • the final version of the system administrator must install the command cprinstall return to the .
  • The administrator must remove RPM packages by hand, and try to update again.
  • Secure Platform will restart automatically return to a snapshot of the last version before the upgrade. (Correct)
  • None
  • Answer : Secure Platform will restart automatically return to a snapshot of the last version before the upgrade.

    MegaCorp security infrastructure to separate security gateways geographically. You need to request a license key with one remote security gateway. How do I apply for permission?


    Options are :

    • The remote gateway IP address, and connecting via the remote gateway smart license update.
    • None
    • The remote gateway IP address, and the application of the license with the locally cplic put command.
    • Using the Security Management Server IP address, and connecting the remote gateway license through the Smart Update. (Correct)
    • .Using each Gateway IP addresses, and applying licenses with the Security Management Server cprlic put command.

    Answer : Using the Security Management Server IP address, and connecting the remote gateway license through the Smart Update.

    R70 FW Monitor utility is used to troubleshoot which of the following problems?


    Options are :

    • Log Consolidation Engine
    • The user database corruption
    • Step two key negotiating
    • traffic issues (Correct)
    • None

    Answer : traffic issues

    What operating system does not support Secure Client?


    Options are :

    • Windows XP SP2
    • Mac OS tenth version
    • Windows Vista
    • None
    • IPSO 3.9 (Correct)

    Answer : IPSO 3.9

    Every column rule base used to define the authentication parameters?


    Options are :

    • To follow
    • service
    • Activities (Correct)
    • None
    • Source

    Answer : Activities

    If Henry wanted to set the Perfect Forward Secrecy his VPN tunnel, at which point he would be setting?


    Options are :

    • step 2 (Correct)
    • Phase 1
    • Aggressive mode
    • None
    • Diffie-Hellman

    Answer : step 2

    Step 2 uses ___________, if not in use Perfect Forward Secrecy.


    Options are :

    • conditional
    • Symmetrical (Correct)
    • asymmetric
    • None
    • consecutive

    Answer : Symmetrical

    156-315.77 Check Point Certified Security Expert Exam Set 7

    In SmartView Tracker error message, peer to send invalid credentials when trying to establish IKE VPN tunnel. Where does this error normally arise and how to solve it? This error is usually the result of:


    Options are :

    • incorrect IP address assigned to one tunnel endpoint; usually the internal one General tab. This can be solved by changing the link selection, or IP, and opposite to each other of the tunnel end point. (Correct)
    • None
    • mismatch recognition algorithms used in the IKE phase one and can be corrected by changing the answer.
    • incorrect IP address configured in one tunnel endpoint, usually the internal one General tab. This can be solved by adding the correct IP topology tab, the two Gateways on both sites.
    • conflict of IP VPN tunnel endpoints and can not be solved.

    Answer : incorrect IP address assigned to one tunnel endpoint; usually the internal one General tab. This can be solved by changing the link selection, or IP, and opposite to each other of the tunnel end point.

    To configure the VPN and you want to encrypt not only the data packet, but the original title. What encryption method should you choose?


    Options are :

    • As well as encrypting and title information
    • In-place encryption
    • None of these
    • Tunneling mode encryption (Correct)

    Answer : Tunneling mode encryption

    As the Security Administrator, you will need to upgrade to Server Authentication authorization timeout each time a new user access is permitted. How do you do this? Take a refreshable Schedule:


    Options are :

    • moon Gateway Authentication object on the screen.
    • the limit tab, click Client Authentication Action Properties screen. (Correct)
    • None
    • Global Authentication Properties screen.
    • moon User Authentication screen object.

    Answer : the limit tab, click Client Authentication Action Properties screen.

    You have to integrate RSA SecurID users of Check Point infrastructure. What kind of users in the field is determined through SmartDashboard?


    Options are :

    • .LDAP unit blocks Group
    • all users
    • Group of generic user (Correct)
    • The internal user group
    • None

    Answer : Group of generic user

    All R70 Security Servers can perform authentication, except for one. Which Security Servers can perform authentication?


    Options are :

    • HTTP
    • SMTP (Correct)
    • None
    • rLogin
    • FTP

    Answer : SMTP

    Each set of objects is the Authentication tab?


    Options are :

    • None
    • Models, users (Correct)
    • The users, user groups,
    • At this, the networks
    • Networks, servers

    Answer : Models, users

    156-315.77 Check Point Certified Security Expert Exam Set 8

    Comment / Suggestion Section
    Point our Mistakes and Post Your Suggestions