PDF 156-215.77 Study Guide

Check Point Certified Security Administrator Questions and Answers

Question 49

You find a suspicious connection from a problematic host. You decide that you want to block everything from that whole network, not just the problematic host. You want to block this for an hour while you investigate further, but you do not want to add any rules to the Rule Base.

How do you achieve this?

Options:

Use dbedit to script the addition of a rule directly into the Rule Bases_5_0.fws configuration file.

Select Block intruder from the Tools menu in SmartView Tracker.

Create a Suspicious Activity Rule in SmartView Monitor.

Add a temporary rule using SmartDashboard and select hide rule.

Question 50

How can you activate the SNMP daemon on a Check Point Security Management Server?

Options:

Using the command line, enter snmp_install.

From cpconfig, select SNMP extension.

Any of these options will work.

In SmartDashboard, right-click a Check Point object and select Activate SNMP.

Question 51

In the Rule Base displayed for fwsingapore, user authentication in Rule 4 is configured as fully automatic. Eric is a member of the LDAP group, MSD_Group.

What happens when Eric tries to connect to a server on the Internet?

Options:

None of these things will happen.

Eric will be authenticated and get access to the requested server.

Eric will be blocked because LDAP is not allowed in the Rule Base.

Eric will be dropped by the Stealth Rule.

Question 52

Which R77 SmartConsole tool would you use to verify the installed Security Policy name on a Security Gateway?

Options:

SmartView Monitor

SmartUpdate

SmartView Status

None, SmartConsole applications only communicate with the Security Management Server.

New Year Special 70% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code: save70

Check Point Certified Security Administrator Questions and Answers

Options:

Answer:

Options:

Answer:

Options:

Answer:

Options:

Answer:

CompTIA

Fortinet

Microsoft

Salesforce