156-581 Exam Questions

After deploying a new Static NAT configuration traffic is not getting through. What command would you use to verify that the proxy arp configuration has been loaded?

After deploying a Hide NAT for a new network, users are unable to access the Internet. What command would you use to check the internal NAT behavior?

Which of the following would be the most appropriate command in debugging a HideNAT issue?

Select the technology that does the following actions - provides reassembly via streaming for TCP - handles packet reordering and congestion - handles payload overlap - provides co...

Which Threat Prevention daemon is the core Threat Emulation engine and responsible for emulation files and communications with Threat Cloud?

For Threat Prevention, which process is enabled when the Policy Conversion process has debug turned on using the INTERNAL_POLICY_LOADING=.1 command?

Where do Protocol parsers register themselves for IPS?

The customer is using Check Point appliances that were configured long ago by third-party administrators. Current policy includes different enabled IPS protections and Bypass Under...

Rules within the Threat Prevention policy use the Malware database and network objects. Which directory is used for the Malware database?

What are some measures you can take to prevent IPS false positives?

The IPS detection incorporates four layers. Which one of these four layers performs various security checks to ensure compliance to protocol standards checking for any existing ano...

IPS detection incorporates 4 layers. Which of the following is NOT a layer in IPS detection?

What process(es) should be checked if there is high I/O and you suspect it may be related to the Antivirus Software Blade?

For TCP connections, when a packet arrives at the Firewall Kernel out of sequence or fragmented, which layer of IPS corrects this to allow for proper inspection?

What are the available types of licenses in Check Point?

Services with expired licenses and contracts have----------

Which of the following is the most significant impact of not having a valid Policy Management license installed on a management server?

Select the correct statement about service contracts

You just bought new Check Point Security Gateway. You will manage the device via Secure Management Server. What is the proper type of licensing in this case?

When accessing License Status in Smart Console, what information is available?

When running the cplic command what argument is used to show the Signature key?

In what formats can you export license status?

What are the commands to verify the Smart Contracts on the Security Gateway?

You need to verify the license on Security Gateway. What command you can use from the command line?

You have to do offline activation for Check Point Security Gateway. You decided to use central licensing. What is required to complete the process?

What process is used to stop a packet at a specified point during its flow and store it in order to examine its contents and resolve issues that may have occurred during inspection...

How many different types of Service Requests exist?

The tcpdump and fw monitor commands can both be used to capture packets on the security gateway. While troubleshooting an issue one may choose to use fw monitor but not tcpdump?

Which command do you need to execute to insert fw monitor after TCP streaming (out) in the outbound chain using absolute position? Given the chain was 1ffffe0, select the correct a...

Where can a Check Point customer find information about product licenses they own, download product manuals and get information about product support expiration?

How many captures does the command "fw monitor -p all" take?

Which if the following is NOT an account user classification?

What is true concerning fw monitor?

Which of the following allows you to capture packets at four inspection points as they traverse a Check Point gateway?

When managing the disk space for locally stored logs, the Delete threshold for the gateway cannot be more than what percentage of the total disk space?

Which type of NAT allows both incoming and outgoing connections?

You have just acquired new licenses for your Check Point security Gateway. You need to attach the new license. What is the object in the Security Console where you can attach the l...

As a security administrator/engineer in your company, you have noticed that your HQ Check Point Security Management Server is not receiving logs from your HQ Check Point Gateway/Cl...

Check Point Threat Prevention policies can contain multiple policy layers and each layer consists of its own Rule Base. Which Threat Prevention daemon is used for Anti-virus?

Which command shows the installed licenses and contracts on a Check Point device?