Nest 0 Cart
Nest Account
Popular Exams
All Categories...
Nest
Nest 0
Contact
Log In / Sign Up
Copyright 2024 © store. All rights reserved.
Home Checkpoint 156-915.80

Checkpoint 156-915.80 Exam Practice Questions (P. 2)

  • Full Access (50 questions)
  • Six months of Premium Access
  • Access to one million comments
  • Seamless ChatGPT Integration
  • Ability to download PDF files
  • Anki Flashcard files for revision
  • No Captcha & No AdSense
  • Advanced Exam Configuration
Get Contributor Access
Question #6
What is a feature that enables VPN connections to successfully maintain a private and secure VPN session without employing Stateful Inspection?
  1. A
    Stateful Mode
  2. B
    VPN Routing Mode
  3. C
    Wire Mode
  4. D
    Stateless Mode

Correct Answer:
C
Wire Mode is a VPN-1 NGX feature that enables VPN connections to successfully fail over, bypassing Security Gateway enforcement. This improves performance and reduces downtime. Based on a trusted source and destination, Wire Mode uses internal interfaces and VPN Communities to maintain a private and secure
VPN session, without employing Stateful Inspection. Since Stateful Inspection no longer takes place, dynamic-routing protocols that do not survive state verification in non-Wire Mode configurations can now be deployed. The VPN connection is no different from any other connections along a dedicated wire, thus the meaning of "Wire Mode".
Reference: https://supportcenter.checkpoint.com/supportcenter/portal?eventSubmit_doGoviewsolutiondetails=&solutionid=sk30974

Question #7
On R80.10 the IPS Blade is managed by:
  1. A
    Threat Protection policy
  2. B
    Anti-Bot Blade
  3. C
    Threat Prevention policy
  4. D
    Layers on Firewall policy

Correct Answer:
A
Reference:
https://www.checkpoint.com/downloads/product-related/r80.10-mgmt-architecture-overview.pdf very top of last page.

Question #8
Which packet info is ignored with Session Rate Acceleration?
  1. A
    source port ranges
  2. B
    source ip
  3. C
    source port
  4. D
    same info from Packet Acceleration is used

Correct Answer:
C
Reference: http://trlj.blogspot.com/2015/10/check-point-acceleration.html

Question #9
What is the purpose of Priority Delta in VRRP?
  1. A
    When a box is up, Effective Priority = Priority + Priority Delta
  2. B
    When an Interface is up, Effective Priority = Priority + Priority Delta
  3. C
    When an Interface fail, Effective Priority = Priority – Priority Delta
  4. D
    When a box fail, Effective Priority = Priority – Priority Delta

Correct Answer:
C
Each instance of VRRP running on a supported interface may monitor the link state of other interfaces. The monitored interfaces do not have to be running VRRP.
If a monitored interface loses its link state, then VRRP will decrement its priority over a VRID by the specified delta value and then will send out a new VRRP
HELLO packet. If the new effective priority is less than the priority a backup platform has, then the backup platform will beging to send out its own HELLO packet.
Once the master sees this packet with a priority greater than its own, then it releases the VIP.
Reference: https://supportcenter.checkpoint.com/supportcenter/portal?eventSubmit_doGoviewsolutiondetails=&solutionid=sk38524

Question #10
What is the purpose of a SmartEvent Correlation Unit?
  1. A
    The SmartEvent Correlation Unit is designed to check the connection reliability from SmartConsole to the SmartEvent Server
  2. B
    The SmartEvent Correlation Unit’s task it to assign severity levels to the identified events.
  3. C
    The Correlation unit role is to evaluate logs from the log server component to identify patterns/threats and convert them to events.
  4. D
    The SmartEvent Correlation Unit is designed to check the availability of the SmartReporter Server

Correct Answer:
C

Previous Questions Next Questions

All Pages