156-215.80 · Question #423
What two ordered layers make up the Access Control Policy Layer?
The correct answer is D. Network and Application Control. The Access Control Policy Layer in Check Point R80+ is composed of two ordered sub-layers: Network and Application Control, applied in that sequence.
Question
What two ordered layers make up the Access Control Policy Layer?
Options
- AURL Filtering and Network
- BNetwork and Threat Prevention
- CApplication Control and URL Filtering
- DNetwork and Application Control
How the community answered
(55 responses)- A2% (1)
- B4% (2)
- C2% (1)
- D93% (51)
Why each option
The Access Control Policy Layer in Check Point R80+ is composed of two ordered sub-layers: Network and Application Control, applied in that sequence.
URL Filtering is not a standalone ordered layer within Access Control; it is handled as part of the Application Control blade, not a separate first-position layer.
Threat Prevention is a separate policy layer entirely and is not a sub-layer within the Access Control Policy Layer.
Application Control and URL Filtering are functionally paired blades but do not represent the two distinct ordered layers of the Access Control Policy Layer.
In Check Point R80 and later, the Access Control policy layer contains a Network sub-layer that enforces basic firewall rules first, followed by an Application Control sub-layer that inspects application-level traffic. The order is significant because network-level rules are matched before application identity is used, allowing efficient policy evaluation and proper enforcement hierarchy.
Concept tested: Check Point R80 Access Control Policy Layer ordering
Source: https://sc1.checkpoint.com/documents/R81/WebAdminGuides/EN/CP_R81_SecurityManagement_AdminGuide/Topics-SECMG/Policy-Layers.htm
Topics
Community Discussion
No community discussion yet for this question.