156-215.81 Exam Questions
690 real 156-215.81 exam questions with expert-verified answers and explanations. Page 10 of 14.
- Question #451
When a Security Gateways sends its logs to an IP address other than its own, which deployment option is installed?
- Question #452
Which of the following is NOT a method used by Identity Awareness for acquiring identity?
- Question #453
Which software blade does NOT accompany the Threat Prevention policy?
- Question #454
What two ordered layers make up the Access Control Policy Layer?
- Question #455
Fill the blank. IT is Best Practice to have a ________ rule at the end of each policy layer.
- Question #456
How many sessions can be opened on the Management Server at the same time?
- Question #457
Phase 1 of the two-phase negotiation process conducted by IKE operates in ______ mode.
- Question #458
What Check Point technologies deny or permit network traffic?
- Question #459
Which identity Source(s) should be selected in Identity Awareness for when there is a requirement for a higher level of security for sensitive servers?
- Question #460
The _____ software blade package uses CPU-level and OS-level sandboxing in order to delect and block malware.
- Question #461
Fill in the blank; The position of an Implied rule is manipulated in the_______ window
- Question #462
Which tool is used to enable ClusterXL?
- Question #463
In SmartConsole, objects are used to represent physical and virtual network components and also some logical components. These objects are divided into several categories. Which of...
- Question #464
What type of NAT is one-to-one relationship where each host is translated to a unique address?
- Question #465
What is the most complete definition of the difference between the Install Policy button on the SmartConsole's tab, and the Install Policy within a specific policy?
- Question #466
To view statistics on detected threats, which Threat Tool would an administrator use?
- Question #467
When defining group-based access in an LDAP environment with Identity Awareness, what is the BEST object type to represent an LDAP group in a Security Policy?
- Question #468
What is the purpose of a Clean-up Rule?
- Question #469
Which icon indicates that read/write access is enabled?
- Question #470
What is the most recommended installation method for Check Point appliances?
- Question #471
In which scenario is it a valid option to transfer a license from one hardware device to another?
- Question #472
Which of the following Windows Security Events will NOT map a username to an IP address in Identity Awareness?
- Question #473
Which of the following is used to enforce changes made to a Rule Base?
- Question #474
Which one of the following is a way that the objects can be manipulated using the new API integration in R80 Management?
- Question #475
Fill in the blank Permanent VPN tunnels can be set on all tunnels in the community, on all tunnels for specific gateways, or
- Question #476
What are the two types of NAT supported by the Security Gateway?
- Question #477
Vanessa is attempting to log into the Gaia Web Portal. She is able to login successfully. Then she tries the same username and password for SmartConsole but gets the message in the...
- Question #478
Which of the following is used to initially create trust between a Gateway and Security Management Server?
- Question #479
John is the administrator of a R80 Security Management server managing r R77.30 Check Point Security Gateway. John is currently updating the network objects and amending the rules...
- Question #480
Fill in the bank: In Office mode, a Security Gateway assigns a remote client to an IP address once___________.
- Question #481
What is Identity Sharing?
- Question #482
Which of the following is NOT a role of the SmartCenter:
- Question #483
Which of the following is NOT a valid application navigation tab in the R80 SmartConsole?
- Question #484
Which of the following blades is NOT subscription-based and therefore does not have to be renewed on a regular basis?
- Question #485
Fill in the blank: Back up and restores can be accomplished through_________.
- Question #486
What is NOT an advantage of Stateful Inspection?
- Question #487
In Unified SmartConsole Gateways and Servers tab you can perform the following functions EXCEPT
- Question #488
Which Threat Prevention Software Blade provides protection from malicious software that can infect your network computers?
- Question #489
When configuring Spoof Tracking, which tracking actions can an administrator select to be done when spoofed packets are detected?
- Question #490
What are the three deployment considerations for a secure network?
- Question #491
Which option, when applied to a rule, allows traffic to VPN gateways in specific VPN communities?
- Question #492
One of major features in R80 SmartConsole is concurrent administration. Which of the following is NOT possible considering that AdminA, AdminB, and AdminC are editing the same Secu...
- Question #493
When should you generate new licenses?
- Question #494
Fill in the blank: When a policy package is installed, ________ are also distributed to the target installation Security Gateways.
- Question #495
Which Check Point software blade provides Application Security and identity control?
- Question #496
How are the backups stored in Check Point appliances?
- Question #497
You are going to perform a major upgrade. Which back up solution should you use to ensure your database can be restored on that device?
- Question #498
True or False: In a Distributed Environment, a Central License can be installed via CLI on a Security Gateway
- Question #499
Which of the following is NOT an identity source used for Identity Awareness?
- Question #500
Fill in the blanks: Default port numbers for an LDAP server is ______ for standard connections and _______ SSL connections.