156-315.71 Exam Questions

The following configuration is for VPN-1 NGX 65. :Is this configuration correct for Management High Availability (HA)? Check Point 156-315.71 Exam

When distributing IPSec packets to gateways in a Load Sharing Multicast mode cluster, which valid Load Sharing method will consider VPN information?

Which encryption scheme provides in-place encryption?

Which of the following can be said about numbered VPN Tunnel Interfaces (VTIs)?

What is the command to upgrade an NG with Application Intelligence R55 SmartCenter running on SecurePlatform to VPN-1 NGX R65?

What can be said about RSA algorithms? Select all that apply.

By default Check Point High Availability components send updates about their state every:

What is the most typical type of configuration for VPNs with several externally managed Gateways?

A VPN Tunnel Interface (VTI) is defined on SecurePlatform Pro as: Check Point 156-315.71 Exam vpn shell interface add numbered 10.10.0.1 10.10.0.2 Helsinki.cp What do you know abou...

You study the Advanced Properties exhibit carefully. What settings can you change to reduce the encryption overhead and improve performance for your mesh VPN Community?

Which of the following commands can be used to bind a NIC to a single processor when using a Performance Pack on SecurePlatform? Check Point 156-315.71 Exam

What is the maximum number of cores supported by CoreXL?

Which of the following is NOT a restriction for connection template generation?

Due to some recent performance issues, you are asked to add additional processors to your firewall. If you already have CoreXL enabled, how are you able to increase Kernel instance...

From the following Rule Base, for which rules will the connection templates be generated in SecureXL? Check Point 156-315.71 Exam

In which ClusterXL Load Sharing mode, does the pivot machine get chosen automatically by ClusterXL?

Which Check Point QoS feature allows a Security Administrator to define special classes of service for delay-sensitive applications?

What is the router command to save your OSPF configuration?

At what router prompt would you save your OSPF configuration? Check Point 156-315.71 Exam

Which of the following operating systems support numbered VTI's?

Which statement is TRUE for route-based VPNs?

Which of the following is TRUE concerning unnumbered VPN Tunnel Interfaces (VTIs)?

Which of the following is a supported Sticky Decision function of Sticky Connections for Load Sharing?

What is the reason for the following error? (See Graphic)

A customer calls saying that a load-sharing cluster shows drops with the error First packet is not SYN. Complete the following sentence. I will recommend:

By default, a standby Security Management Server is automatically synchronized by an active Security Management Server, when:

You have a High Availability ClusterXL configuration. Machines are not synchronized. What happens to connections on failover?

You are preparing computers for a new ClusterXL deployment. For your cluster, you plan to use three machines with the following configurations: Cluster Member 1: OS: SecurePlatform...

Which of the following commands will stop acceleration on a Security Gateway running on SecurePlatform?

Which of the following is TRUE concerning numbered VPN Tunnel Interfaces (VTIs)?

Which operating system(s) support(s) unnumbered VPN Tunnel Interfaces (VTIs) for route-based VPNs?

After Travis added new processing cores on his server, CoreXL did not use them. What would be the most plausible reason why? Travis did not:

Check Point New Mode HA is a(n)__________solution.

Included in the client's network are some switches, which rely on IGMP snooping. You must find a solution to work with these switches. Which of the following answers does NOT lead...

You have two IP Appliances: one IP565 and one IP395. Both appliances have IPSO 6.2 and R71 installed in a distributed deployment. Can they be members of a Gateway Cluster?

What could be a reason why synchronization between primary and secondary Security Management Servers does not occur?

Which of the following items can be provisioned via a Profile through SmartProvisioning?

What does it mean when a Security Gateway is labeled Untrusted in the SmartProvisioning Status view?

Using the Backup Target functionality in SmartProvisioning, what targets are available?

The We-Make-Widgets company has purchased twenty UTM-1 Edge appliances for their remote offices. Kim decides the best way to manage those appliances is to use SmartProvisioning and...

SmartProvisioning can provision the Operating System and network settings on which of the following?

Check Point 156-315.71 Exam Which of the following services will cause SecureXL templates to be disabled?

Which of the following load-balancing methods is not valid?

The relay mail server configured under Email Notifications is used by the DLP Gateway to: (Choose the BEST answer.)

For a dedicated DLP Gateway that runs in inline bridge mode, why is it important to properly define the topology?

Which protocol is not supported for DLP?

What happens when an Administrator activates the DLP Portal for Self Incident Handling and enters its fully qualified domain name (DNS name)?

You just upgraded to R71 and are using the IPS Software Blade. You want to enable all critical protections while keeping the rate of false positive very low. How can you achieve th...

You enable Sweep Scan Protection and Host port scan in IPS to determine if a large amount of traffic from a specific internal IP address is a network attack, or a user's system is...

You need to verify the effectiveness of your IPS configuration for your Web server farm. You have a colleague run penetration tests to confirm that the Web servers are secure again...