156-215.81 Exam Questions

What are the three main components of Check Point security management architecture?

The default shell of the Gaia CLI is cli.sh. How do you change from the cli.sh shell to the advanced shell to run Linux commands?

Check Point licenses come in two forms. What are those forms?

In SmartEvent, a correlation unit (CU) is used to do what?

What are the two elements of address translation rules?

Identity Awareness lets an administrator easily configure network access and auditing based on three items.

Which Check Point software Wade provides visibility of users, groups and machines while also providing access control through identity-based policies?

For Automatic Hide NAT rules created by the administrator what is a TRUE statement?

What is the user ID of a user that have all the privileges of a root user?

Which command shows the installed licenses in Expert mode?

What are two basic rules Check Point recommends for building an effective security policy?

When a gateway requires user information for authentication, what order does it query servers for user information?

SmartConsole provides a consolidated solution for everything that is necessary for the security of an organization, such as the following:

Which of the following is NOT a type of Endpoint Identity Agent?

An administrator wishes to use Application objects in a rule in their policy but there are no Application objects listed as options to add when clicking the"+" to add new items to...

Using AD Query, the security gateway connections to the Active Directory Domain Controllers using what protocol?

Where can alerts be viewed?

A layer can support different combinations of blades, what are the supported blades?

What technologies are used to deny or permit network traffic?

If an administrator wants to restrict access to a network resource only allowing certain users to access it, and only when they are on a specific network, what is the best way to a...

Which of the following statements about Site-to-Site VPN Domain-based is NOT true?

You had setup the VPN Community NPN-Stores' with 3 gateways. There are some issues with one remote gateway(1.1.1.1) and an your local gateway. What will be the best log filter to s...

Aggressive Mode in IKEv1 uses how many packages for negotiation?

What are the software components used by Autonomous Threat Prevention Profiles in R8I.20 and higher?

Which command shows detailed information about VPN tunnels?

What are valid authentication methods for mutual authenticating the VPN gateways?

Which of the following is a valid deployment option?

Check Point licenses come in two forms. What are those forms?

Which encryption algorithm is the least secured?

What is required for a certificate-based VPN tunnel between two gateways with separate management systems?

You want to set up a VPN tunnel to a external gateway. You had to make sure that the IKE P2 SA will only be established between two subnets and not all subnets defined in the defau...

In the Check Point three-tiered architecture, which of the following is NOT a function of the Security Management Server?

Fill in the blank: The_____is used to obtain identification and security information about network users.

Which Security Blade needs to be enabled in order to sanitize and remove potentially malicious content from files, before those files enter the network?

Fill in the blank: A(n)_____rule is created by an administrator and configured to allow or block traffic based on specified criteria.

Which Check Point supported authentication scheme typically requires a user to possess a token?

Which of the following is true about Stateful Inspection?

Which option in tracking allows you to see the amount of data passed in the connection?

Bob and Joe both have Administrator Roles on their Gaia Platform. Bob logs in on the WebUI and then Joe logs in through CLI. Choose what BEST describes the following scenario, wher...

Fill in the blank: An identity server uses a______________to trust a Terminal Server Identity Agent.