CMI stands for Context Management Infrastructure, which is a component of the Access Control Policy that enables the Security Gateway to inspect traffic based on the context of the connection. Context includes information such as user identity, application, location, time, and device. CMI allows the Security Gateway to apply different security rules and actions based on the context of the traffic, and to dynamically update the context as it changes. CMI consists of three main elements: Unified Policy, Identity Awareness, and Content Awareness.
Question 2
Which of the following commands can be used to see the list of processes monitored by the Watch Dog process?
Options:
A.
cpstat fw -f watchdog
B.
fw ctl get str watchdog
C.
cpwd_admin list
D.
ps -ef | grep watchd
Answer:
C
Explanation:
To see the list of processes monitored by the WatchDog process (CPWD), you use thecpwd_admin listcommand.
Option A (cpstat fw -f watchdog): Shows firewall status and statistics for the "fw" context, not necessarily the list of monitored processes.
Option B (fw ctl get str watchdog): Not a valid parameter for retrieving the list of monitored processes; “fw ctl” deals with kernel parameters.
Option C (cpwd_admin list): Correct command that lists all processes monitored by CPWD, their status, and how many times they have been restarted.
Option D (ps -ef | grep watchd): This will list any running process that matches the string “watchd” but will not specifically detail which processes are being monitored by CPWD.
Therefore, the best answer iscpwd_admin list.
Check Point Troubleshooting References
sk97638: Explains Check Point WatchDog (CPWD) usage and the cpwd_admin utility.
R81.20 CLI Reference Guide: Describes common troubleshooting commands including cpwd_admin list.
Check Point Gaia Administration Guide: Provides instructions for monitoring system processes and verifying CPWD.
Question 3
What is the correct syntax to set all debug flags for Unified Policy related issues?