nerdexam
Check_Point

156-587 · Question #114

156-587 Question #114: Real Exam Question with Answer & Explanation

The correct answer is A. HTTPD and CPVND. Option A (HTTPD and CPVND) is correct because Mobile Access VPN is Check Point's SSL/web-based remote access solution. HTTPD handles the HTTPS/portal traffic that users connect through, while CPVND (Check Point VPN Daemon) manages the actual VPN session logic - together they cove

Troubleshoot R81.20 Security Gateway Issues

Question

You were asked by security team to debug Mobile Access VPN. What processes will you debug?

Options

  • AHTTPD and CPVND
  • BIKED
  • CVPND and IKED
  • DSNX daemon

Explanation

Option A (HTTPD and CPVND) is correct because Mobile Access VPN is Check Point's SSL/web-based remote access solution. HTTPD handles the HTTPS/portal traffic that users connect through, while CPVND (Check Point VPN Daemon) manages the actual VPN session logic - together they cover the full Mobile Access connection flow on the gateway.

Why the distractors are wrong:

  • B (IKED) - The IKE daemon handles IKEv1/v2 negotiation for IPsec, which is relevant to Site-to-Site or IPsec-based Remote Access VPN, not Mobile Access SSL VPN.
  • C (VPND and IKED) - Both are IPsec-oriented processes used for traditional IPsec VPN tunnels; neither is the primary debug target for Mobile Access.
  • D (SNX daemon) - SSL Network Extender (SNX) is a client-side browser plugin/component, not a gateway process you would debug on the Security Gateway itself.

Memory tip: Think "Mobile Access = Web portal = HTTP traffic" → HTTPD catches your attention first, then pair it with the generic VPN daemon CPVND. Any answer containing IKED is an IPsec clue, which rules out Mobile Access entirely.

Topics

#Mobile Access VPN#Process debugging#HTTPD/CPVND#VPN architecture

Community Discussion

No community discussion yet for this question.

Sign up to join the discussion
Full 156-587 Practice