156-315.80 Dumps with Practice Exam Questions Answers
156-315.80 by CCSE Actual Free Exam Practice Test
What is the duration of the 156-315.80 Exam
- Length of Examination: 90 minutes
- Passing Score: 70%
- Format: Multiple choices, multiple answers
- Number of Questions: 100
NEW QUESTION 183
Which CLI command will reset the IPS pattern matcher statistics?
- A. ips pmstats reset
- B. ips pmstats refresh
- C. ips pstats reset
- D. ips reset pmstat
Answer: A
Explanation:
Reference:
https://sc1.checkpoint.com/documents/R76/CP_R76_CLI_WebAdmin/84627.htm
NEW QUESTION 184
On R80.10 the IPS Blade is managed by:
- A. Threat Prevention policy
- B. Anti-Bot Blade
- C. Threat Protection policy
- D. Layers on Firewall policy
Answer: A
Explanation:
References:
NEW QUESTION 185
What is true about VRRP implementations?
- A. VRRP can be used together with ClusterXL, but with degraded performance
- B. VRRP membership is enabled in cpconfig
- C. You cannot have different VRIDs in the same physical network
- D. You cannot have a standalone deployment
Answer: D
Explanation:
Explanation/Reference: https://sc1.checkpoint.com/documents/R76/CP_R76_Gaia_WebAdmin/87911.htm
NEW QUESTION 186
Fill in the blank: The R80 feature ______ permits blocking specific IP addresses for a specific time period.
- A. Suspicious Activity Monitoring
- B. Local Interface Spoofing
- C. Adaptive Threat Prevention
- D. Block Port Overflow
Answer: A
Explanation:
Explanation
Suspicious Activity Rules Solution
Suspicious Activity Rules is a utility integrated into SmartView Monitor that is used to modify access privileges upon detection of any suspicious network activity (for example, several attempts to gain unauthorized access).
The detection of suspicious activity is based on the creation of Suspicious Activity rules. Suspicious Activity rules are Firewall rules that enable the system administrator to instantly block suspicious connections that are not restricted by the currently enforced security policy. These rules, once set (usually with an expiration date), can be applied immediately without the need to perform an Install Policy operation References:
NEW QUESTION 187
Which Mobile Access Application allows a secure container on Mobile devices to give users access to internal
website, file share and emails?
- A. Check Point Capsule Remote
- B. Check Point Remote User
- C. Check Point Mobile Web Portal
- D. Check Point Capsule Workspace
Answer: C
NEW QUESTION 188
Which of to the following is true about Capsule Connect?
- A. It is a full layer 3 VPN client
- B. It is supported only on IOS phones and Windows PCs
- C. It offers full enterprise mobility management
- D. It does not support all VPN authentication methods
Answer: C
NEW QUESTION 189
You have created a rule at the top of your Rule Base to permit Guest Wireless access to the Internet. However, when guest users attempt to reach the Internet, they are not seeing the splash page to accept your Terms of Service, and cannot access the Internet. How can you fix this?
- A. Right click Accept in the rule, select "More", and then check 'Enable Identity Captive Portal'.
- B. In the Captive Portal screen of Global Properties, check 'Enable Identity Captive Portal'.
- C. On the Security Management Server object, check the box 'Identity Logging'.
- D. On the firewall object, Legacy Authentication screen, check 'Enable Identity Captive Portal'.
Answer: A
Explanation:
Explanation/Reference: https://sc1.checkpoint.com/documents/R80.20_GA/WebAdminGuides/EN/ CP_R80.20_NextGenSecurityGateway_Guide/html_frameset.htm?topic=documents/R80.20_GA/ WebAdminGuides/EN/CP_R80.20_NextGenSecurityGateway_Guide/136978
NEW QUESTION 190
What does it mean if Deyra sees the gateway status? (Choose the BEST answer.)
- A. VPN software blade is reporting a malfunction.
- B. There is a blade reporting a problem.
- C. Security Gateway's MGNT NIC card is disconnected.
- D. SmartCenter Server cannot reach this Security Gateway.
Answer: B
NEW QUESTION 191
You have existing dbedit scripts from R77. Can you use them with R80.10?
- A. dbedit is fully supported in R80.10
- B. dbedit scripts are being replaced by mgmt_cli in R80.10
- C. dbedit is not supported in R80.10
- D. You can use dbedit to modify threat prevention or access policies, but not create or modify layers
Answer: B
Explanation:
Explanation/Reference: https://www.checkpoint.com/downloads/product-related/r80.10-mgmt-architecture-overview.pdf
NEW QUESTION 192
Which is NOT an example of a Check Point API?
- A. Gateway API
- B. OPSEC SDK
- C. Management API
- D. Threat Prevention API
Answer: A
Explanation:
Explanation
NEW QUESTION 193
What is required for a certificate-based VPN tunnel between two gateways with separate management systems?
- A. Mutually Trusted Certificate Authorities
- B. Shared User Certificates
- C. Shared Secret Passwords
- D. Unique Passwords
Answer: A
NEW QUESTION 194
Which command is used to obtain the configuration lock in Gaia?
- A. Unlock database lock
- B. Lock database user
- C. Unlock database override
- D. Lock database override
Answer: D
Explanation:
Obtaining a Configuration Lock
NEW QUESTION 195
NAT rules are prioritized in which order?
1. Automatic Static NAT
2. Automatic Hide NAT
3. Manual/Pre-Automatic NAT
4. Post-Automatic/Manual NAT rules
- A. 4, 3, 1, 2
- B. 1, 4, 2, 3
- C. 1, 2, 3, 4
- D. 3, 1, 2, 4
Answer: C
NEW QUESTION 196
You find one of your cluster gateways showing "Down" when you run the "cphaprob stat" command. You then run the "clusterXL_admin up" on the down member but unfortunately the member continues to show down. What command do you run to determine the cause?
- A. cphaprob -a list
- B. cphaprob -d -s report
- C. cphaprob -f register
- D. cpstat -f all
Answer: A
NEW QUESTION 197
In order to get info about assignment (FW, SND) of all CPUs in your SGW, what is the most accurate CLI
command?
- A. cpinfo
- B. fw ctl affinity -l a -r -v
- C. fw ctl sdstat
- D. fw ctl multik stat
Answer: B
NEW QUESTION 198
You need to see which hotfixes are installed on your gateway, which command would you use?
- A. cpinfo -y all
- B. cpinfo -h all
- C. cpinfo -o hotfix
- D. cpinfo -l hotfix
Answer: A
Explanation:
Explanation
Explanation/Reference: https://supportcenter.checkpoint.com/supportcenter/portal?
eventSubmit_doGoviewsolutiondetails=&solutionid=sk72800
NEW QUESTION 199
......
Check Point 156-315.80 Exam Syllabus Topics:
| Topic | Details |
|---|---|
| Troubleshooting User Authentication and User Directory (LDAP) | - Common Configuration Pitfalls- Some LDAP Tools - Troubleshooting User Authentication |
| Lab 4: Configuring SmartDashboard to Interface with Active Directory | - Creating the Active Directory Object in SmartDashboard- Verify SmartDashboard Communication with the AD Server |
| VRRP | - VRRP vs ClusterXL- Monitored Circuit VRRP - Troubleshooting VRRP |
| FW Monitor | - What is FW Monitor- C2S Connections and S2C Packets fw monitor |
| Upgrading Standalone Full High Availability | |
| Auditing and Reporting | Objectives:
|
| SmartReporter | -Report Types |
| Check Point Firewall Infrastructure | - GUI Clients - Management |
| SmartEvent Architecture | - Component Communication Process- Event Policy User Interface |
| Backup and Restore Security Gateways and Management Servers | - Snapshot management - Upgrade Tools - Backup Schedule Recommendations - Upgrade Tools - Performing Upgrades - Support Contract |
| Kernel Tables | - Connections Table- Connections Table Format |
| Identity Awareness | - Enabling AD Query- AD Query Setup - Identifying users behind an HTTP Proxy - Verifying there’s a logged on AD user at the source IP - Checking the source computer OS - Using SmartView Tracker |
| Advanced VPN Concepts and Practices | - IPsec- Internet Key Exchange (IKE) - IKE Key Exchange Process – Phase 1/ Phase 2 Stages |
| Advanced IPsec VPN and Remote Access | Objectives:
|
| Clustering and Acceleration | Objectives:
|
| Check Point Firewall Key Features | - Packet Inspection Flow- Policy Installation Flow - Policy Installation Process - Policy Installation Process Flow |
| Troubleshooting | -VPN Encryption Issues |
| SecureXL: Security Acceleration | - What SecureXL Does- Packet Acceleration - Session Rate Acceleration - Masking the Source Port - Application Layer Protocol - An Example with HTTP HTTP 1.1 - Factors that Preclude Acceleration - Factors that Preclude Templating (Session Acceleration) - Packet Flow - VPN Capabilities |
| Maintenance Tasks and Tools | - Perform a Manual Failover of the FW Cluster- Advanced Cluster Configuration |
| Remote Access VPNs | - Connection Initiation- Link Selection |
| ClusterXL: Load Sharing | - Multicast Load Sharing- Unicast Load Sharing - How Packets Travel Through a Unicast - LS Cluster - Sticky Connections |
| Network Address Translation | - How NAT Works- Hide NAT Process - Security Servers - How a Security Server Works - Basic Firewall Administration - Common Commands |
| Lab 6: Remote Access with Endpoint Security VPN | - Defining LDAP Users and Groups- Configuring LDAP User Access - Defining Encryption Rules - Defining Remote Access Rules - Configuring the Client Side |
| User Management | - Active Directory OU Structure- Using LDAP Servers with Check Point - LDAP User Management with User Directory - Defining an Account Unit - Configuring Active Directory Schemas - Multiple User Directory (LDAP) Servers - Authentication Process Flow - Limitations of Authentication Flow - User Directory (LDAP) Profiles |
| Advanced Firewall | Objectives:
|
| Security Gateway | - User and Kernel Mode Processes- CPC Core Process -FWM - FWD -CPWD - Inbound and Outbound Packet Flow - Inbound FW CTL Chain Modules - Outbound Chain Modules - Columns in a Chain - Stateful Inspection |
| Clustering and Acceleration | - Clustering Terms- ClusterXL - Cluster Synchronization - Synchronized-Cluster Restrictions - Securing the Sync Interface - To Synchronize or Not to Synchronize |
| Lab 7: SmartEvent and SmartReporter | - Configure the Network Object in SmartDashboard- Configuring Security Gateways to work with SmartEvent - Monitoring Events with SmartEvent - Generate Reports Based on Activities |
| VPN Debug | - vpn debug Command- vpn debug on | off - vpn debug ikeon |ikeoff - vpn Log Files - vpn debug trunc - VPN Environment Variables - vpn Command - vpn tu - Comparing SAs |
| Lab 1: Upgrading to Check PointR77 | - Install Security Management Server - Migrating Management server Data - Importing the Check Point Database - LaunchSmartDashboard - Upgrading the Security Gateway |
| CoreXL: Multicore Acceleration | - Supported Platforms and Features- Default Configuration - Processing Core Allocation - Allocating Processing Cores - Adding Processing Cores to the Hardware - Allocating an Additional Core to the SND - Allocating a Core for Heavy Logging - Packet Flows with SecureXL Enabled |
| Lab 2: Core CLI Elements of Firewall Administration | - Policy Management and Status- Verification from the CLI - Using cpinfo - Run cpinfo on the Security Management Server - Analyzing cpinfo in InfoView - Using fw ctl pstat - Using tcpdump |
| Management HA | - The Management High Availability Environment- Active vs. Standby - What Data is Backed Up? - Synchronization Modes - Synchronization Status |
| Advanced User Management | Objectives:
|
| Upgrading | Objectives:
|
| SmartEvent | -SmartEvent Intro |
| Auditing and Reporting Process | -Auditing and Reporting Standards |
| Tunnel Management | - Permanent Tunnels- Tunnel Testing - VPN Tunnel Sharing - Tunnel-Management Configuration - Permanent-Tunnel Configuration - Tracking Options - Advanced Permanent-Tunnel configuration - VPN Tunnel Sharing Configuration |
| Lab 5: Configure Site-to-Site VPNs with Third Party Certificates | - Configuring Access to the Active Directory Server- Creating the Certificate - Importing the Certificate Chain and Generating Encryption Keys - Installing the Certificate - Establishing Environment Specific Configuration - Testing the VPN Using 3rd Party Certificates |
| Multiple Entry Point VPNs | - How Does MEP Work- Explicit MEP - Implicit MEP |
| Lab 3 Migrating to a Clustering Solution | - Installing and Configuring the Secondary Security Gateway Re-configuring the Primary Gateway - Configuring Management Server Routing - Configuring the Cluster Object - Testing High Availability - Installing the Secondary Management Server - Configuring Management High Availability |
Free CCSE 156-315.80 Exam Question: https://www.vceprep.com/156-315.80-latest-vce-prep.html