156-727.77 Exam Questions
51 real 156-727.77 exam questions with expert-verified answers and explanations. Page 1 of 2.
- Question #1
Can the Anti-Bot software blade be enabled on a Secure Web Gateway as well?
- Question #2
Which of these is a Check Point Firewall attribute?
- Question #3
What is the name of Check Point collaborative network that delivers real-time dynamic security intelligence to Check Point threat prevention blades?
- Question #4
What is the main purpose of the ThreatCloud?
- Question #5
Which of the following is information uploaded to ThreatCloud?
- Question #6
Check Point's IPS blade provides two pre-defined profiles. Which of the following definitions are correct?
- Question #7
When adding IPS to a gateway, which profile will be set?
- Question #9
IPS is primarily a __________-based engine.
- Question #10
IPS can assist in the discovery of unknown buffer overflow attacks without any pre-defined signatures.
- Question #11
What advantage does the Recommended_Profile provide over the Default_Protection profile?
- Question #12
SmartEvent has several components that work together to help track down security threats. What is the function of the Correlation Unit as one of those components in the architectur...
- Question #13
In SmartViewTracker, you see a log record of type "control" and severity "critical" for the product "Threat Emulation" which says: "cloud emulation failed. Reason: failed to authen...
- Question #15
How can SmartEvent be launched out of SmartDashboard?
- Question #16
An end-user calls the helpdesk, complaining that he cannot access a web site. You check the log and see that an IPS signature is dropping his connections. What can you do? Change t...
- Question #17
You just enabled the IPS blade, and have downloaded the latest signature updates. You created a custom profile but you are concerned that if you push a policy it might start droppi...
- Question #18
Order the steps to bypass the IPS for specific protection:
- Question #19
Looking at these logs, what happened at 10:55?
- Question #20
_______________ enforces or monitors traffic, based on the source or destination IP address of the country.
- Question #21
This graphic shows traffic being blocked from certain countries. What is the deciding factor for this?
- Question #22
If a bot is detected on your network, which of the following statements is correct regarding anti- bot blade.
- Question #23
Damage from a bot attack can take place after the bot compromises a machine. Which of the following represents the order by which this process takes place? The bot:
- Question #24
The Threat Prevention software blade:
- Question #25
When is the default Threat Prevention profile enforced?
- Question #26
Which of the following statements regarding the threat prevention database is NOT correct?
- Question #27
When configuring Anti-Bot & Anti-Virus, you notice the following error in the Update Status of the Gateways page: What is the most likely cause of this error?
- Question #28
Put these HTTPS traffic inspections steps in the correct order.
- Question #29
Which blades can support HTTPS inspection?
- Question #31
When the feature ______________ is ON, the Gateway does not block DNS requests that were identified as malicious. Instead it sends a false response with a bogus IP address to the c...
- Question #32
What is the most common way a computer can become infected with a bot?
- Question #33
Bots and viruses appear as __________ in the reporting blade.
- Question #34
Joey is the MegaCorp Firewall administrator. Which options does he have for the configuration of the Threat Emulation Analysis Location on his gateway?
- Question #35
A customer does not own Check Point Gateways, but he wants to use Threat Emulation Service to detect SMTP Zero-Day vulnerabilities. What is his option?
- Question #36
A customer does not own Check Point Gateways, but he wants to use Threat Emulation Service to detect SMTP Zero-Day vulnerabilities. What is his option?
- Question #37
What is the minimum software version required for a Threat Emulation deployment?
- Question #38
SmartEvent > Events > Predefined: in which section can the "All Threat Emulation" setting be found?
- Question #39
SmartLog displays:
- Question #40
SmartLog can be used to identify which of the following:
- Question #41
Which of the following are valid Boolean search terms that can be used in custom SmartLog queries?
- Question #43
Which of these statements describes the Check Point ThreatCloud?
- Question #44
Which TCP ports allow LDAP users to communicate with the Account Unit?
- Question #45
Check Point Intrusion Prevention System (IPS) is available in two deployment methods, as a blade and also a dedicated appliance. What is the dedicated appliance called?
- Question #46
What is the minimum amount of RAM needed for a Threat Prevention Appliance?
- Question #47
Which software blades are characteristic to a Threat Prevention Appliance?
- Question #48
Which of the following is information shared via ThreatCloud?
- Question #49
Which of the following is information shared via ThreatCloud?
- Question #50
Sensitive corporate data is uploaded to ThreatCloud:
- Question #51
What is the name of the Check Point cloud-driven Knowledgebase?
- Question #52
What filters can be used in Check Point ThreatWiki (either via ThreatWiki.checkpoint.com or via ThreatPrevention tab in Dashboard)?
- Question #53
Which of the following is a searchable database of all known threats detected by sensors around the world?
- Question #54
When pushing the Threat Prevention policy, which of the following blades will NOT get updated?