Nest 0 Cart
Nest Account
Popular Exams
All Categories...
Nest
Nest 0
Contact
Log In / Sign Up
Copyright 2024 © store. All rights reserved.
Home Checkpoint 156-585

Checkpoint 156-585 Exam Practice Questions (P. 3)

  • Full Access (75 questions)
  • Six months of Premium Access
  • Access to one million comments
  • Seamless ChatGPT Integration
  • Ability to download PDF files
  • Anki Flashcard files for revision
  • No Captcha & No AdSense
  • Advanced Exam Configuration
Get Contributor Access
Question #11
During firewall kernel debug with fw ctl zdebug you received less information that expected. You noticed that a lot of messages were lost since the time the debug was started. What should you do to resolve this issue?
  1. A
    Increase debug buffer; Use fw ctl debug -buf 32768
  2. B
    Redirect debug output file; Use fw ctl zdebug -o ./debug.elg
  3. C
    Increase debug buffer; Use fw ctl zdebug -buf 32768
  4. D
    Redirect debug output file; Use fw ctl debug -o ./debug.elg

Correct Answer:
A

Question #12
Where do Protocol parsers register themselves for IPS?
  1. A
    Passive Streaming Library
  2. B
    Other handlers register to Protocol parser
  3. C
    Protections database
  4. D
    Context Management Infrastructure

Correct Answer:
A

Question #13
Which command can be run in Expert mode to verify the core dump settings?
  1. A
    grep cdm /config/db/coredump
  2. B
    grep cdm /config/db/initial
  3. C
    grep $FWDIR/config/db/initial
  4. D
    cat /etc/sysconfig/coredump/cdm.conf

Correct Answer:
C

Question #14
The two procedures available for debugging in the firewall kernel are: i. fw ctl zdebug ii. fw ctl debug/kdebug
Choose the correct statement explaining the difference in the two.
  1. A
    (i) Is used for general debugging, has a small buffer and is a quick way to set kernel debug flags to get an output via command line whereas (ii) is useful when there is a need for detailed debugging and requires additional steps to set the buffer and get an output via command line
  2. B
    (i) is used to debug the access control policy only, however (ii) can be used to debug a unified policy
  3. C
    (i) is used to debug only issues related to dropping traffic, however (ii) can be used for any firewall issue including NATing, clustering etc.
  4. D
    (i) is used on a Security Gateway, whereas (ii) is used on a Security Management Server

Correct Answer:
C

Question #15
If the cpsemd process of SmartEvent has crashed or is having trouble to coming up, then it usually indicates that _______________.
  1. A
    Postgres database is down
  2. B
    Cpd daemon is unable to connect to the log server
  3. C
    The SmartEvent core on the Solr indexer has been deleted
  4. D
    The logged in administrator does not have permissions to run SmartEvent

Correct Answer:
C

Previous Questions Next Questions

All Pages