Nest 0 Cart
Nest Account
Popular Exams
All Categories...
Nest
Nest 0
Contact
Log In / Sign Up
Copyright 2024 © store. All rights reserved.
Home Checkpoint 156-115.77

Checkpoint 156-115.77 Exam Practice Questions (P. 1)

  • Full Access (46 questions)
  • Six months of Premium Access
  • Access to one million comments
  • Seamless ChatGPT Integration
  • Ability to download PDF files
  • Anki Flashcard files for revision
  • No Captcha & No AdSense
  • Advanced Exam Configuration
Get Contributor Access
Question #1
When troubleshooting a VPN site-to-site to a peer, it may be necessary to "down" the tunnel. What is the best method to remove ONLY the tunnel to this peer?
  1. A
    Change the vpn tunnel sharing parameters to force the tunnel down.
  2. B
    Reboot your gateway.
  3. C
    Remove the peer from the community and install policy.
  4. D
    Delete the IKE and IPsec Security Associations using the command vpn tu.

Correct Answer:
D

Question #2
In Check Point, Domain-based VPN's take precedence over route-based VPN. If implementing a route-based VPN, what is one configuration step you must make on the gateway object taking part in the route-based VPN?
  1. A
    You should remove the gateway from all communities.
  2. B
    Check Point does not support route-based VPN's.
  3. C
    You need to create a new simple group with no objects in it and apply this as the VPN domain under that gateway's topology tab.
  4. D
    You should check the "Use route-based VPN" checkbox in the community properties.

Correct Answer:
C

Question #3
What utility would you use to configure route-based VPNs?
  1. A
    vpn sw_topology
  2. B
    vpn shell
  3. C
    vpn set_slim_server
  4. D
    vpn tu

Correct Answer:
B

Question #4
Where do you configure the file user.def to change the encryption domain of the Security Gateway?
  1. A
    Management Server
  2. B
    Endpoint Client
  3. C
    Security Gateway
  4. D
    interoperable device

Correct Answer:
A

Question #5
Henry is attempting to verify VPN connectivity between two hosts, x and y. Of the following commands, which could be BEST used to verify connectivity of this
VPN?
  1. A
    [Expert@HostName]# fw monitor -e "((src=x.x.x.x , dst=y.y.y.y) or (src=y.y.y.y, dst=x.x.x.x)), accept;" x-o /var/log/fw_mon.cap
  2. B
    [Expert@HostName]# fw monitor -e "host(x.x.x.x) and host(y.y.y.y), accept;" -o /var/log/fw_mon.capw monitor -e "accept;" -o /var/log/fw_mon.cap
  3. C
    [Expert@HostName]# fw monitor -e "(ip_p=X) or (ip_p=Y, port(Z)), accept;" -o /var/log/fw_mon.cap
  4. D
    [Expert@HostName]# fw monitor -e "ip_p=X, accept;" -o /var/log/fw_mon.cap

Correct Answer:
A

Next Questions

All Pages