Nest 0 Cart
Nest Account
Popular Exams
All Categories...
Nest
Nest 0
Contact
Log In / Sign Up
Copyright 2024 © store. All rights reserved.
Home Checkpoint 156-215.77

Checkpoint 156-215.77 Exam Practice Questions (P. 2)

  • Full Access (388 questions)
  • Six months of Premium Access
  • Access to one million comments
  • Seamless ChatGPT Integration
  • Ability to download PDF files
  • Anki Flashcard files for revision
  • No Captcha & No AdSense
  • Advanced Exam Configuration
Get Contributor Access
Question #11
The customer has a small Check Point installation which includes one Windows 7 workstation as the SmartConsole, one GAiA device working as Security
Management Server, and a third server running SecurePlatform as Security Gateway. This is an example of a(n):
  1. A
    Hybrid Installation
  2. B
    Unsupported configuration
  3. C
    Stand-Alone Installation
  4. D
    Distributed Installation

Correct Answer:
D

Question #12
The customer has a small Check Point installation which includes one Windows 2008 server as SmartConsole and Security Management Server with a second server running GAiA as Security Gateway. This is an example of a(n):
  1. A
    Stand-Alone Installation.
  2. B
    Distributed Installation.
  3. C
    Unsupported configuration.
  4. D
    Hybrid Installation.

Correct Answer:
B

Question #13
When doing a Stand-Alone Installation, you would install the Security Management Server with which other Check Point architecture component?
  1. A
    None, Security Management Server would be installed by itself.
  2. B
    SmartConsole
  3. C
    SecureClient
  4. D
    Security Gateway

Correct Answer:
D

Question #14
Tom has been tasked to install Check Point R77 in a distributed deployment. Before Tom installs the systems this way, how many machines will he need if he does NOT include a SmartConsole machine in his calculations?
  1. A
    Three machines
  2. B
    One machine
  3. C
    Two machines
  4. D
    One machine, but it needs to be installed using SecurePlatform for compatibility purposes

Correct Answer:
C

Question #15
Which command allows Security Policy name and install date verification on a Security Gateway?
  1. A
    fw show policy
  2. B
    fw stat -l
  3. C
    fw ctl pstat -policy
  4. D
    fw ver -p

Correct Answer:
B

Question #16
You have two rules, ten users, and two user groups in a Security Policy. You create database version 1 for this configuration. You then delete two existing users and add a new user group. You modify one rule and add two new rules to the Rule Base. You save the Security Policy and create database version 2. After awhile, you decide to roll back to version 1 to use the Rule Base, but you want to keep your user database. How can you do this?
  1. A
    Run fwm dbexport -l filename. Restore the database. Then, run fwm dbimport -l filename to import the users.
  2. B
    Run fwm_dbexport to export the user database. Select restore the entire database in the Database Revision screen. Then, run fwm_dbimport.
  3. C
    Restore the entire database, except the user database, and then create the new user and user group.
  4. D
    Restore the entire database, except the user database.

Correct Answer:
D

Question #17
Which feature or command provides the easiest path for Security Administrators to revert to earlier versions of the same Security Policy and objects configuration?
  1. A
    Database Revision Control
  2. B
    Policy Package management
  3. C
    dbexport/dbimport
  4. D
    upgrade_export/upgrade_import

Correct Answer:
A

Question #18
Your Security Management Server fails and does not reboot. One of your remote Security Gateways managed by the Security Management Server reboots. What occurs with the remote Gateway after reboot?
  1. A
    Since the Security Management Server is not available, the remote Gateway cannot fetch the Security Policy. Therefore, all traffic is allowed through the Gateway.
  2. B
    Since the Security Management Server is not available, the remote Gateway cannot fetch the Security Policy. Therefore, no traffic is allowed through the Gateway.
  3. C
    The remote Gateway fetches the last installed Security Policy locally and passes traffic normally. The Gateway will log locally, since the Security Management Server is not available.
  4. D
    Since the Security Management Server is not available, the remote Gateway uses the local Security Policy, but does not log traffic.

Correct Answer:
C

Question #19
How can you configure an application to automatically launch on the Security Management Server when traffic is dropped or accepted by a rule in the Security
Policy?
  1. A
    SNMP trap alert script
  2. B
    Custom scripts cannot be executed through alert scripts.
  3. C
    User-defined alert script
  4. D
    Pop-up alert script

Correct Answer:
C

Question #20
Which of the following is NOT useful to verify whether or not a Security Policy is active on a Gateway?
  1. A
    fw ctl get string active_secpol
  2. B
    fw stat
  3. C
    cpstat fw -f policy
  4. D
    Check the Security Policy name of the appropriate Gateway in SmartView Monitor.

Correct Answer:
A

Previous Questions Next Questions

All Pages