156-315.81 Exam Questions
668 real 156-315.81 exam questions with expert-verified answers and explanations. Page 6 of 14.
- Question #253
You need to change the number of firewall Instances used by CoreXL. How can you achieve this goal?
- Question #254
Fill in the blank: Identity Awareness AD-Query is using the Microsoft _______________ API to learn users from AD.
- Question #256
The essential means by which state synchronization works to provide failover in the event an active member goes down, ____________ is used specifically for clustered environments t...
- Question #257
Which statement is most correct regarding about "CoreXL Dynamic Dispatcher"?
- Question #258
What CLI command compiles and installs a Security Policy on the target's Security Gateways?
- Question #259
Pamela is Cyber Security Engineer working for Global Instance Firm with large scale deployment of Check Point Enterprise Appliances using GAiA/R80.10. Company's Developer Team is h...
- Question #260
Fill in the blank: The "fw monitor" tool can be best used to troubleshoot ____________________.
- Question #261
In which formats can Threat Emulation forensics reports be viewed in?
- Question #262
In ClusterXL Load Sharing Multicast Mode:
- Question #263
What kind of information would you expect to see using the sim affinity command?
- Question #264
What cloud-based SandBlast Mobile application is used to register new devices and users?
- Question #265
What is the responsibility of SOLR process on R81.10 management server?
- Question #266
In the Firewall chain mode FFF refers to:
- Question #267
Which file gives you a list of all security servers in use, including port number?
- Question #268
Which of the following commands shows the status of processes?
- Question #269
What is the valid range for VRID value in VRRP configuration?
- Question #270
What is true of the API server on R81.10?
- Question #271
To ensure that VMAC mode is enabled, which CLI command should you run on all cluster members?
- Question #272
For best practices, what is the recommended time for automatic unlocking of locked admin accounts?
- Question #273
Which is NOT a SmartEvent component?
- Question #274
Check Point APIs allow system engineers and developers to make changes to their organization's security policy with CLI tools and Web Services for all the following except:
- Question #275
When SecureXL is enabled, all packets should be accelerated, except packets that match the following conditions:
- Question #276
On what port does the CPM process run?
- Question #277
What is the SandBlast Agent designed to do?
- Question #278
What is correct statement about Security Gateway and Security Management Server failover in Check Point R81.X in terms of Check Point Redundancy driven solution?
- Question #279
Fill in the blank. The R81 feature ___________________ permits blocking specific IP addresses for a specified time period.
- Question #280
What command would show the API server status?
- Question #281
In Logging and Monitoring, the tracking options are Log, Detailed Log and Extended Log. Which of the following options can you add to each Log, Detailed Log and Extended Log?
- Question #282
Which file contains the host address to be published, the MAC address that needs to be associated with the IP Address, and the unique IP of the interface that responds to ARP reque...
- Question #283
With SecureXL enabled, accelerated packets will pass through the following:
- Question #284
Which command would you use to set the network interfaces' affinity in Manual mode?
- Question #285
You notice that your firewall is under a DDoS attack and would like to enable the Penalty Box feature, which command you use?
- Question #286
Which of the following is NOT an option to calculate the traffic direction?
- Question #287
What command lists all interfaces using Multi-Queue?
- Question #288
When deploying SandBlast, how would a Threat Emulation appliance benefit from the integration of ThreatCloud?
- Question #289
During the Check Point Stateful Inspection Process, for packets that do not pass Firewall Kernel Inspection and are rejected by the rule definition, packets are:
- Question #290
Vanessa is firewall administrator in her company. Her company is using Check Point firewall on a central and several remote locations which are managed centrally by R77.30 Security...
- Question #291
Please choose the path to monitor the compliance status of the Check Point R81.10 based management.
- Question #293
What must you do first if "fwm sic_reset" could not be completed?
- Question #294
Check Point security components are divided into the following components:
- Question #295
You have a Geo-Protection policy blocking Australia and a number of other countries. Your network now requires a Check Point Firewall to be installed in Sydney, Australia. What mus...
- Question #296
In the Check Point Firewall Kernel Module, each Kernel is associated with a key, which specifies the type of traffic applicable to the chain module. For Stateful Mode configuration...
- Question #297
In what way are SSL VPN and IPSec VPN different?
- Question #298
In what way is Secure Network Distributor (SND) a relevant feature of the Security Gateway?
- Question #299
You have a Gateway is running with 2 cores. You plan to add a second gateway to build a cluster and used a device with 4 cores. How many cores can be used in a Cluster for Firewall...
- Question #300
Which NAT rules are prioritized first?
- Question #301
What is the most ideal Synchronization Status for Security Management Server High Availability deployment?
- Question #302
Joey wants to upgrade from R75.40 to R81 version of Security management. He will use Advanced Upgrade with Database Migration method to achieve this. What is one of the requirement...
- Question #303
Which is NOT an example of a Check Point API?
- Question #304
What are the methods of SandBlast Threat Emulation deployment?