MegaCorp is running Smartcenter R70, some Gateways at R65 and some other Gateways with R60. Management wants to upgrade to the most comprehensive IPv6 support. What should the administrator do first?
MultiCorp is running Smartcenter R71 on an IPSO platform and wants to upgrade to a new Appliance with R77. Which migration tool is recommended?
Paul has just joined the MegaCorp security administration team. Natalie, the administrator, creates a new administrator account for Paul in SmartDashboard and installs the policy. When Paul tries to login it fails. How can Natalie verify whether Paul’s IP address is predefined on the security management server?
When using a template to define a user in SmartDirectory, the user’s password should be defined in the _____ object.
Which of the following CLISH commands would you use to set the admin user's shell to bash?
The process that performs the authentication for legacy session authentication is:
User definitions are stored in _____.
The process _____ executes the authentication for logging in to SmartDashboard.
When an Endpoint user is able to authenticate but receives a message from the client that it is unable to enforce the desktop policy, what is the most likely scenario?
How could you compare the Fingerprint shown to the Fingerprint on the server? Run cpconfig and select:
Exhibit:
MegaCorp is using SmartCenter Server with several gateways. Their requirements result in a heavy log load. Would it be feasible to add the SmartEvent Correlation Unit and SmartEvent Server to their SmartCenter Server?
Fill in the blank.
Write the full fw command and syntax that you would use to troubleshoot ClusterXL sync issues.
Fill in the blanks.
To view the number of concurrent connections going through your firewall, you would use the command and syntax _____ _____ _____ _____ _____.
_____ is the called process that starts when opening SmartView Tracker application.
Fill in the blank.
To enter the router shell, use command _____.
Which command will only show the number of entries in the connection table?
Which CLI tool helps on verifying proper ClusterXL sync?
Fill in the blank.
In Load Sharing Unicast mode, the internal cluster IP address is 10.4.8.3. The internal interfaces on two members are 10.4.8.1 and 10.4.8.2. Internal host 10.4.8.108 Pings 10.4.8.3, and receives replies. The following is the ARP table from the internal Windows host 10.4.8.108.
Review the exhibit and type the IP address of the member serving as the pivot machine in the space below.
Steve is troubleshooting a connection problem with an internal application. If he knows the source IP address is 192.168.4.125, how could he filter this traffic?
Fill in the blank.
Type the full fw command and syntax that allows you to disable only sync on a cluster firewall member.
You want to upgrade a SecurePlatform NG with Application Intelligence (Al) R55 Gateway to SecurePlatform NGX R60 via SmartUpdate.
Which package is needed in the repository before upgrading?
Which of the following load-balancing methods is not valid?
When configuring site-to-site VPN High Availability (HA) with MEP, which of the following is correct?
Which of the following is supported with Office Mode?
When a security administrator logs in to SmartDashboard and selects Continue without session from the following window,what kind of access will be granted to him in SmartDashboard?
After installing VPN-1 Pro NGQ R65, you discover that one port on your Intel Quad NIC on the Security Gateway is not fetched by a get topology request. What is the most likely cause and solution?
Where do Gateways managed by SmartProvisioning fetch their assigned profiles?
Which of the following can NOT be done on the Management Portal?
What is the significance of the depicted icon in the SmartWorkflow toolbar?
What action CANNOT be run from SmartUpdate NGX R65?
Exhibit:
What cluster mode is represented in this case?
How do you run “CPSIZEME” on SPLAT?
When do modifications to the Event Policy take effect?
When Load Sharing Multicast mode is defined in a ClusterXL cluster object, how are packets being handled by cluster members?
The process _____ complies $FWDIR/CONF/*.W files into machine language.
What is NOT a valid LDAP use in Check Point SmartDirectory?
In a Check Point gateway cluster, are VRRP and ClusterXL mutually exclusive?
Which is the lowest Gateway version manageable by SmartCenter R77?
Which of these is a type of acceleration in SecureXL?
When migrating the SmartEvent data base from one server to another, the last step is to save the files on the new server. Which of the following commands should you run to save the SmartEvent data base files on the new server?
John is upgrading a cluster from NGX R65 to R77. John knows that you can verify the upgrade process using the pre-upgrade verifier tool. When John is running Pre-Upgrade Verification, he sees the warning message:
Title: Incompatible pattern.
What is happening?
Which of the following is NOT a valid way to view interface’s IP address settings in GAiA?
Which of the following is the preferred method for adding static routes in GAiA?
Restoring a snapshot-created file on one machine that was created on another requires which of the following to be the same on both machines?
MegaCorps' disaster recovery plan is past due for an update to the backup and restore section to enjoy the benefits of the new distributed R77 installation. You must propose a plan that meets the following required and desired objectives:
Required: Security Policy repository must be backed up no less frequently than every 24 hours.
Desired: Back up R77 components enforcing the Security Policies at least once a week.
Desired: Back up R77 logs at least once a week.
You develop a disaster recovery plan proposing the following:
The corporate IT change review committee decides your plan:
You are preparing computers for a new ClusterXL deployment. For your cluster, you plan to use three machines with the following configurations:
Cluster Member 1: OS - GAiA; NICs - QuadCard; Memory - 1 GB; Security Gateway - version: R71 and primary Security Management Server installed, version: R77
Cluster Member 2: OS - GAiA; NICs - 4 Intel 3Com; Memory - 1 GB; Security Gateway only, version: R77
Cluster Member 3: OS - GAiA; NICs - 4 other manufacturers; Memory - 512 MB; Security Gateway only, version: R77
Are these machines correctly configured for a ClusterXL deployment?
Which three of the following are ClusterXL member requirements?
1) same operating systems
2) same Check Point version
3) same appliance model
4) same policy
Which of the following is NOT part of the policy installation process?
The process _____ is responsible for all other security server processes run on the Gateway.
When restoring R77 using the command upgrade_import, which of the following items are NOT restored?
Which of the following is TRUE concerning unnumbered VPN Tunnel Interfaces (VTIs)?
There are times when you want to use Link Selection to manage high-traffic VPN connections. With Link Selection you can:
When configuring numbered VPN Tunnel Interfaces (VTIs) in a clustered environment, what issues need to be considered?
1) Each member must have a unique source IP address.
2) Every interface on each member requires a unique IP address.
3) All VTI's going to the same remote peer must have the same name.
4) Cluster IP addresses are required.
There are times when you want to use Link Selection to manage high-traffic VPN connections. With Link Selection you can:
You have configured a site to site VPN, but the tunnel in not coming up. Review the following screen shots. What is a likely cause?
Your organization maintains several IKE VPN’s. Executives in your organization want to know which mechanism Security Gateway R77 uses to guarantee the authenticity and integrity of messages. Which technology should you explain to the executives?
Fill in the blank.
To verify that a VPN Tunnel is properly established, use the command _____.
If both domain-based and route-based VPN’s are configured, which will take precedence?
There are times when you want to use Link Selection to manage high-traffic VPN connections. With Link Selection you can:
Review the following list of actions that Security Gateway R75 can take when it controls packets. The Policy Package has been configured for Simplified Mode VPN. Select the response below that includes the available actions:
Where do you define NAT properties so that NAT is performed either client side or server side? In SmartDashboard under:
The “MAC Magic” value must be modified under the following condition:
You are the MegaCorp Security Administrator. This company uses a firewall cluster, consisting of two cluster members. The cluster generally works well but one day you find that the cluster is behaving strangely. You assume that there is a connectivity problem with the cluster synchronization link (cross-over cable). Which of the following commands is the BEST for testing the connectivity of the crossover cable?
What is the proper CLISH syntax to configure a default route via 192.168.255.1 in GAiA?
What firewall kernel table stores information about port allocations for Hide NAT connections?
Fill in the blank.
You can set Acceleration to ON or OFF using command syntax _____.
What does the command vpn crl_zap do?
Frank is concerned with performance and wants to configure the affinities settings. His gateway does not have the Performance pack running. What would Frank need to perform in order configure those settings?
Which of the following is NOT an internal/native Check Point command?
A Threat Prevention profile is a set of configurations based on the following. Select the right answer.
What is the router command to save your OSPF configuration?
To change the default port of the Management Portal:
You configure a Check Point QoS Rule Base with two rules:
an H.323 rule with a weight of 10, and the Default Rule with a weight of 10.
The H.323 rule includes a per-connection guarantee of 384 Kbps. and a per-connection limit of 512 Kbps. The per-connection guarantee is for four connections, and no additional connections are allowed in the Action properties. If traffic is passing through the QoS Module matches both rules, which of the following statements is TRUE?
Which of the following statements is FALSE regarding OSPF configuration on Secure Platform Pro?
In ClusterXL, _______ is defined by default as a critical device.
SmartWorkflow has been enabled with the following configuration:
If a security administrator opens a new session and after making changes to policy, submits the session for approval will be displayed as:
In CoreXL, what process is responsible for processing incoming traffic from the network interfaces, securely accelerating authorized packets, and distributing non-accelerated packets among kernel instances?
If traffic requires preferential treatment by other routers on the network, in addition to the QoS module, which Check Point QoS feature should be used?
Which of the following is NOT a restriction for connection template generation?
You are preparing computers for a new ClusterXL deployment.
For your cluster, you plan to use three machines with the following configurations:
Are these machines correctly configured for a ClusterXL deployment?
In R71, how would you define a rule to block all traffic sent to or from Germany?
A Fast Path Upgrade of a cluster:
To backup all events stored in the SmartEvent Server, you should back up the contents of which folder(s)?
Which external user authentication protocols are supported in SSL VPN?
Using IPS, how do you notify the Security Administrator that malware is scanning specific ports? By enabling:
Which command displays the installed Security Gateway version?
Before upgrading SecurePlatform, you should create a backup.
To save time, many administrators use the command backup.
This creates a backup of the Check Point configuration as well as the system configuration.
An administrator has installed the latest HFA on the system for fixing traffic problems after creating a backup file. There is a mistake in the very complex static routing configuration.
The Check Point configuration has not been changed.
Can the administrator use a restore to fix the errors in static routing?
Your online bookstore has customers connecting to a variety of Web servers to place or change orders and check order status. You ran penetration tests through the Security Gateway to determine if the Web servers were protected from a recent series of cross-site scripting attacks. The penetration testing indicated the Web servers were still vulnerable.
You have checked every box in the Web Intelligence tab, and installed the Security Policy.
What else might you do to reduce the vulnerability?
Which command line interface utility allows the administrator to verify the Security Policy name and timestamp currently installed on a firewall module?
The Security Gateway is installed on SecurePlatform R77. The default port for the Web User Interface is ____________.
Which of the following access options would you NOT use when configuring Captive Portal?
Which two processes are responsible on handling Identity Awareness?
In the following cluster configuration; if you reboot sglondon_1 which device will be active when sglondon_1 is back up and running? Why?
If using AD Query for seamless identity data reception from Microsoft Active Directory (AD), which of the following methods is NOT Check Point recommended?
Which is NOT a method through which Identity Awareness receives its identities?
When using Captive Portal to send unidentified users to a Web portal for authentication, which of the following is NOT a recommended use for this method?
Identity Agent is a lightweight endpoint agent that authenticates securely with Single Sign-On (SSO). Which of the following is NOT a recommended use for this method?
MultiCorp has bought company OmniCorp and now has two active AD domains. How would you deploy Identity Awareness in this environment?
Copyright © 2021-2025 CertsTopics. All Rights Reserved
