156-215.80 · Question #428
Your internal networks 10.1.1.0/24, 10.2.2.0/24 and 192.168.0.0/16 are behind the Internet Security Gateway. Considering that Layer 2 and Layer 3 setup is correct, what are the steps you will need to
The correct answer is C. 1. Define an accept rule in Security Policy.. To allow traffic for internal networks in Check Point SmartConsole, you must complete a specific sequence of configuration steps including defining rules, network objects with topology, and installing the policy.
Question
Your internal networks 10.1.1.0/24, 10.2.2.0/24 and 192.168.0.0/16 are behind the Internet Security Gateway. Considering that Layer 2 and Layer 3 setup is correct, what are the steps you will need to do in SmartConsole in order to get the connection working?
Options
- A
- Define an accept rule in Security Policy.
- B
- Define an accept rule in Security Policy.
- C
- Define an accept rule in Security Policy.
- D
- Define an accept rule in Security Policy.
How the community answered
(26 responses)- A15% (4)
- B4% (1)
- C73% (19)
- D8% (2)
Why each option
To allow traffic for internal networks in Check Point SmartConsole, you must complete a specific sequence of configuration steps including defining rules, network objects with topology, and installing the policy.
Choice A is incomplete because it omits a required subsequent step such as defining network topology or installing the policy, which is mandatory for changes to take effect.
Choice B is incorrect because it either includes an unnecessary step or is missing a critical configuration action like defining the protected network objects.
Choice C is correct because it includes the complete required sequence: defining an accept rule in the Security Policy, defining the internal network objects with correct topology so the gateway recognizes the subnets as protected, and installing the policy to push the configuration to the gateway. Omitting any of these steps will prevent the gateway from properly permitting traffic for the specified subnets.
Choice D is incorrect because it either lists steps in the wrong order or omits a necessary configuration step such as installing the security policy after rule creation.
Concept tested: Check Point SmartConsole security policy configuration sequence
Source: https://sc1.checkpoint.com/documents/R81/WebAdminGuides/EN/CP_R81_SecurityManagement_AdminGuide/Content/Topics-SECMG/Managing-Policies.htm
Topics
Community Discussion
No community discussion yet for this question.