Browse Exams Pricing

Exams156-215.71Questions

156-215.71 Exam Questions

574 real 156-215.71 exam questions with expert-verified answers and explanations. Page 11 of 12.

Question #503
You have installed a R71 Security Gateway on SecurePlatform. To manage the Gateway from the enterprise Security Management Server, you create a new Gateway object and Security Poli...
Question #504
Select the correct statement about Secure Internal Communications (SIC) Certificates. SIC Certificates:
Question #505
A _______ rule is used to prevent all traffic going to the R71 Security Gateway.
Question #506
Which specific R71 GUI would you use to add an address translation rule?
Question #507
Which of the following is NOT a valid selection for tracking and controlling packets in R71?
Question #508
When configuring anti-spoofing on the Security Gateway object interfaces, which of the following is NOT a valid R71 topology configuration?
Question #509
You are conducting a security audit. While reviewing configuration files and logs, you notice logs accepting POP3 traffic, but you do not see a rule allowing POP3 traffic in the Ru...
Question #510
Refer to exhibit: Check Point 156-215.71 Exam What happens if Web Server is checked?
Question #511
Security Administrator, Anna has done the following: What will happen when she recreates the firewall object?
Question #512
To check the Rule Base, some rules can be hidden so they do not distract the administrator from the unhidden rules. Assume that only rules accepting HTTP or SSH will be shown. How...
Question #513
You just installed a new Web server in the DMZ that must be reachable from the Internet. You create a manual Static NAT rule as follows: "web_public_IP" is the node object that rep...
Question #514
What is a Stealth rule used for?
Question #515
What is the default setting when you use NAT?
Question #516
Identify the correct step performed by SmartUpdate to upgrade a remote Security Gateway. After Check Point 156-215.71 Exam selecting Packages / Distribute Only and choosing the tar...
Question #517
Identify the correct step performed by SmartUpdate to upgrade a remote Security Gateway. After selecting Packages / Distribute and Install Selected Package and choosing the target...
Question #518
You are running the license_upgrade tool on your SecurePlatform Gateway. Which of the following can you NOT do with the upgrade tool?
Question #519
If a SmartUpdate upgrade or distribution operation fails on SecurePlatfom, how is the system recovered?
Question #520
Why should the upgrade_export configuration file (.tgz) be deleted after you complete the import process?
Question #521
You are using SmartUpdate to fetch data and perform a remote upgrade to a R71 Security Gateway. Which of the following statements is FALSE?
Question #522
What action can be performed from SmartUpdate R71?
Question #523
Which tool CANNOT be launched from SmartUpdate R71?
Question #524
Sally has a Hot Fix Accumulator (HFA) she wants to install on her Security Gateway which operates with SecurePlatform, but she cannot SCP the HFA to the system. She can SSH into th...
Question #525
Which command gives an overview of your installed licenses?
Question #526
Where are SmartEvent licenses installed?
Question #527
You plan to upgrade from R65 to R71 Software Blades. Do you need new licenses and license strings for this scenario?
Question #528
What is the command to upgrade a SecurePlatform NG with Application Intelligence R55 Management Server to R71?
Question #529
All Check Point Suite products before version RXX need to be upgraded to RXX before you can upgrade them to R71. RXX is:
Question #530
R71 is compatible with UTM-1 Edge gateways X.X and above. X.X is:
Question #531
The technical-support department has a requirement to access an intranet server. When configuring a User Authentication rule to achieve this, which of the following should you reme...
Question #532
You cannot use SmartDashboard's SmartDirectory features to connect to the LDAP server. What should you investigate?
Question #533
Users are not prompted for authentication when they access their Web servers, even though you have created an HTTP rule via User Authentication. Why?
Question #534
Your users are defined in a Windows 2003 Active Directory server. You must add LDAP users to a Client Authentication rule. Which kind of user group do you need in the Client Authen...
Question #535
Mr. Smith needs access to other networks and should be able to use all services, but session authentication is not suitable. The Security Administrator selects client authenticatio...
Question #536
In the given Rule Base, the client authentication in rule 4 is configured as fully automatic. Eric is a member of the LDAP group, MSAD_Group. When Eric tries to connect to a server...
Question #537
When selecting an authentication scheme for a user, which scheme would you use if you only want the password to be stored locally? (The password is not stored at a third party comp...
Question #538
What is the bit size of a DES key?
Question #539
What is the size of a hash produced by SHA-1?
Question #540
Public keys and digital certificates do NOT provide which of the following?
Question #541
Your manager requires you to setup a new corporate VPN between all your branch offices. He requires you to choose the strongest and most secure available algorithms for the headqua...
Question #542
If you need strong protection for the encryption of user data, what option would be the BEST choice?
Question #543
Review the following list of actions that Security Gateway R71 can take when it controls packets. The Policy Package has been configured for Simplified Mode VPN. Select the respons...
Question #544
Your organization maintains several IKE VPNs. Executives in your organization want to know which mechanism Security Gateway R71 uses to guarantee the authenticity and integrity of...
Question #545
Which of the following is TRUE concerning control connections between the Security Management Server and the Gateway in a VPN Community? Control Connections are:
Question #546
You have traveling salesmen connecting to your VPN community from all over the world. Which technology would you choose?
Question #547
You wish to configure a VPN and you want to encrypt not just the data packet, but the original header. Which encryption scheme would you select?
Question #548
You wish to view the current state of the customer's VPN tunnels, including those that are down and destroyed. Which SmartConsole application will provide you with this information...
Question #549
Marc is a Security Administrator configuring a VPN tunnel between his site and a partner site. He just created the partner city's firewall object and a community. While trying to a...
Question #550
You install and deploy SecurePlatform with default settings. You allow Visitor Mode in the Remote Access properties of the Gateway object and install policy, but SecureClient refus...
Question #551
With deployment of SecureClient, you have defined in the policy that you allow traffic only to an encrypted domain. But when your mobile users move outside of your company, they of...
Question #552
How many packets does the IKE exchange use for Phase 1 Main Mode?

PreviousPage 11 of 12Next

study smarter, certify faster.

Product

Browse Exams
Pricing
PDF Downloads

Resources

Blog
Glossary
Topics
FAQ
Contact Us

Legal

Terms of Service
Privacy Policy
Cookie Policy
DMCA
Refund Policy

Company

About
Contact

© 2026 NerdExam. All rights reserved.Built for IT professionals

NerdExam is a trading name of WADL Solutions Limited, a company incorporated in Hong Kong (CR# 80143234). Registered office: Unit 2904-05, 29/F, Universal Trade Centre, 3 Arbuthnot Road, Central, Hong Kong.

CompTIA, AWS, Cisco, Microsoft, Google Cloud, Oracle, VMware, and other certification names referenced on this site are trademarks of their respective owners. NerdExam is not affiliated with, endorsed by, or sponsored by any certification vendor.