156-215.80 Exam Questions
561 real 156-215.80 exam questions with expert-verified answers and explanations. Page 10 of 12.
- Question #451Deployment and Configuration
When a Security Gateways sends its logs to an IP address other than its own, which deployment option is installed?
distributed deploymentlog serverSecurity Gatewaystandalone - Question #452User Management and Authentication
Which of the following is NOT a method used by Identity Awareness for acquiring identity?
Identity Awarenessidentity sourcesAD QueryRADIUS - Question #453Security Policy Management
Which software blade does NOT accompany the Threat Prevention policy?
Threat Preventionsoftware bladesApplication ControlIPS - Question #454Security Policy Management
What two ordered layers make up the Access Control Policy Layer?
access control policypolicy layersApplication ControlURL Filtering - Question #455Security Policy Management
Fill the blank. IT is Best Practice to have a ________ rule at the end of each policy layer.
cleanup rulepolicy best practiceexplicit droprule base - Question #456Deployment and Configuration
How many sessions can be opened on the Management Server at the same time?
Management Serverconcurrent sessionsadministrator access - Question #457VPN Solutions
Phase 1 of the two-phase negotiation process conducted by IKE operates in ______ mode.
IKEPhase 1VPN negotiationmain mode - Question #458Introduction to Check Point Technology
What Check Point technologies deny or permit network traffic?
packet filteringstateful inspectionapplication layer firewalltraffic control - Question #459User Management and Authentication
Which identity Source(s) should be selected in Identity Awareness for when there is a requirement for a higher level of security for sensitive servers?
Identity Awarenessidentity sourcesEndpoint Identity Agentsensitive servers - Question #460Introduction to Check Point Technology
The _____ software blade package uses CPU-level and OS-level sandboxing in order to delect and block malware.
SandBlastThreat EmulationCPU sandboxingmalware detection - Question #461Security Policy Management
Fill in the blank; The position of an Implied rule is manipulated in the_______ window
implied rulesGlobal Propertiesrule positioningfirewall policy - Question #462ClusterXL High Availability
Which tool is used to enable ClusterXL?
ClusterXLcpconfigcluster enablementhigh availability tools - Question #463Introduction to Check Point Technology
In SmartConsole, objects are used to represent physical and virtual network components and also some logical components. These objects are divided into several categories. Which of...
SmartConsole objectsobject categoriesnetwork objectsobject types - Question #464Network Address Translation (NAT)
What type of NAT is one-to-one relationship where each host is translated to a unique address?
Static NATone-to-one NATNAT typesaddress translation - Question #465Security Policy Management
What is the most complete definition of the difference between the Install Policy button on the SmartConsole's tab, and the Install Policy within a specific policy?
Install Policypolicy installationSmartConsole workflowpolicy selection - Question #466Monitoring and Reporting
To view statistics on detected threats, which Threat Tool would an administrator use?
ThreatWikithreat statisticsthreat toolsIPS monitoring - Question #467User Management and Authentication
When defining group-based access in an LDAP environment with Identity Awareness, what is the BEST object type to represent an LDAP group in a Security Policy?
Identity AwarenessLDAPAccess Rolegroup-based access - Question #468Security Policy Management
What is the purpose of a Clean-up Rule?
Clean-up Ruleimplicit denyrule basetraffic policy - Question #469Introduction to Check Point Technology
Which icon indicates that read/write access is enabled?
SmartConsole UIread/write accesssession permissionsinterface icons - Question #470Deployment and Configuration
What is the most recommended installation method for Check Point appliances?
ISOMorphicUSB installationappliance deploymentinstallation methods - Question #471Deployment and Configuration
In which scenario is it a valid option to transfer a license from one hardware device to another?
license transferappliance licensinghardware migrationCheck Point licenses - Question #472User Management and Authentication
Which of the following Windows Security Events will NOT map a username to an IP address in Identity Awareness?
Identity AwarenessKerberos eventsWindows Security Eventsuser-IP mapping - Question #473Security Policy Management
Which of the following is used to enforce changes made to a Rule Base?
Install Policyrule base enforcementpolicy deploymentpolicy changes - Question #474Introduction to Check Point Technology
Which one of the following is a way that the objects can be manipulated using the new API integration in R80 Management?
R80 management APIJSONAPI integrationobject manipulation - Question #475VPN Solutions
Fill in the blank Permanent VPN tunnels can be set on all tunnels in the community, on all tunnels for specific gateways, or
permanent VPN tunnelsVPN communitytunnel configurationsite-to-site VPN - Question #476Network Address Translation (NAT)
What are the two types of NAT supported by the Security Gateway?
NAT typesHide NATStatic NATSecurity Gateway NAT - Question #477User Management and Authentication
Vanessa is attempting to log into the Gaia Web Portal. She is able to login successfully. Then she tries the same username and password for SmartConsole but gets the message in the...
SmartConsole authenticationGaia portalmanagement credentialsadministrator login - Question #478Deployment and Configuration
Which of the following is used to initially create trust between a Gateway and Security Management Server?
SICone-time passwordtrust establishmentgateway-management server - Question #479Security Policy Management
John is the administrator of a R80 Security Management server managing r R77.30 Check Point Security Gateway. John is currently updating the network objects and amending the rules...
publish sessionmulti-administratorR80 session managementdatabase changes - Question #480VPN Solutions
Fill in the bank: In Office mode, a Security Gateway assigns a remote client to an IP address once___________.
Office Moderemote access VPNIP assignmentuser authentication - Question #481User Management and Authentication
What is Identity Sharing?
Identity SharingIdentity AwarenessSecurity GatewayIdentity Distribution - Question #482Introduction to Check Point Technology
Which of the following is NOT a role of the SmartCenter:
SmartCenterManagement ServerCertificate AuthorityRoles - Question #483Introduction to Check Point Technology
Which of the following is NOT a valid application navigation tab in the R80 SmartConsole?
SmartConsoleR80Navigation TabsUI - Question #484Introduction to Check Point Technology
Which of the following blades is NOT subscription-based and therefore does not have to be renewed on a regular basis?
Software BladesSubscriptionThreat EmulationLicensing - Question #485Deployment and Configuration
Fill in the blank: Back up and restores can be accomplished through_________.
BackupRestoreSmartConsoleCLI - Question #486Introduction to Check Point Technology
What is NOT an advantage of Stateful Inspection?
Stateful InspectionFirewall TechnologyInspection MethodsNetwork Layer - Question #487Introduction to Check Point Technology
In Unified SmartConsole Gateways and Servers tab you can perform the following functions EXCEPT
SmartConsoleGateways and Servers TabR80Management Functions - Question #488Introduction to Check Point Technology
Which Threat Prevention Software Blade provides protection from malicious software that can infect your network computers?
Threat PreventionAnti-botSoftware BladesMalware Protection - Question #489Security Policy Management
When configuring Spoof Tracking, which tracking actions can an administrator select to be done when spoofed packets are detected?
Spoof TrackingAnti-SpoofingTracking ActionsSecurity Policy - Question #490Deployment and Configuration
What are the three deployment considerations for a secure network?
Deployment ModelsStandaloneDistributedBridge Mode - Question #491VPN Solutions
Which option, when applied to a rule, allows traffic to VPN gateways in specific VPN communities?
VPN CommunitiesEncrypted TrafficSecurity RuleVPN Policy - Question #492Security Policy Management
One of major features in R80 SmartConsole is concurrent administration. Which of the following is NOT possible considering that AdminA, AdminB, and AdminC are editing the same Secu...
Concurrent AdministrationR80Rule LockingSmartConsole - Question #493Deployment and Configuration
When should you generate new licenses?
LicensingRMAMAC AddressLicense Generation - Question #494Security Policy Management
Fill in the blank: When a policy package is installed, ________ are also distributed to the target installation Security Gateways.
Policy InstallationPolicy PackageObject DatabaseUser Database - Question #495Introduction to Check Point Technology
Which Check Point software blade provides Application Security and identity control?
Application ControlSoftware BladesApplication SecurityIdentity Control - Question #496Deployment and Configuration
How are the backups stored in Check Point appliances?
BackupFile StorageCPbackupCLI - Question #497Deployment and Configuration
You are going to perform a major upgrade. Which back up solution should you use to ensure your database can be restored on that device?
BackupSnapshotMajor UpgradeDatabase Revision - Question #498Deployment and Configuration
True or False: In a Distributed Environment, a Central License can be installed via CLI on a Security Gateway
LicensingDistributed EnvironmentCPLICCentral License - Question #499User Management and Authentication
Which of the following is NOT an identity source used for Identity Awareness?
Identity AwarenessIdentity SourcesAD QueryRADIUS - Question #500User Management and Authentication
Fill in the blanks: Default port numbers for an LDAP server is ______ for standard connections and _______ SSL connections.
LDAPDefault PortsSSLAuthentication