[Q10-Q30] Latest 156-215.81.20 Practice Test Questions Verified Answers As Experienced in the Actual Test!

September 28, 2024 admin 0 Comments

Rate this post

Latest 156-215.81.20 Practice Test Questions Verified Answers As Experienced in the Actual Test!

Pass CheckPoint 156-215.81.20 Exam in First Attempt Easily

Q10. Which two Identity Awareness commands are used to support identity sharing?

Policy Decision Point (PDP) and Policy Enforcement Point (PEP)

Policy Enforcement Point (PEP) and Policy Manipulation Point (PMP)

Policy Manipulation Point (PMP) and Policy Activation Point (PAP)

Policy Activation Point (PAP) and Policy Decision Point (PDP)

Q11. Due to high CPU workload on the Security Gateway, the security administrator decided to purchase a new multicore CPU to replace the existing single core CPU.
After installation, is the administrator required to perform any additional tasks?

Go to clash-Run cpstop | Run cpstart

Go to clash-Run cpconfig | Configure CoreXL to make use of the additional Cores | Exit cpconfig | Reboot Security Gateway

Administrator does not need to perform any task. Check Point will make use of the newly installed CPU and Cores

Go to clash-Run cpconfig | Configure CoreXL to make use of the additional Cores | Exit cpconfig | Reboot Security Gateway | Install Security Policy

Q12. What is the BEST command to view configuration details of all interfaces in Gaia CLISH?

ifconfig -a

show interfaces

show interfaces detail

show configuration interface

Q13. What type of NAT is a one-to-one relationship where each host is translated to a unique address?

Source

Static

Hide

Destination

Q14. With URL Filtering, what portion of the traffic is sent to the Check Point Online Web Service for analysis?

The complete communication is sent for inspection.

The IP address of the source machine.

The end user credentials.

The host portion of the URL.

Q15. Examine the sample Rule Base.

What will be the result of a verification of the policy from SmartConsole?

No errors or Warnings

Verification Error. Empty Source-List in Rule 5 (Mail Inbound)

Verification Error. Rule 4 (Web Inbound) hides Rule 6 (Webmaster access)

Verification Error. Rule 7 (Clean-Up Rule) hides Implicit Clean-up Rule

Q16. What are the steps to configure the HTTPS Inspection Policy?

Go to Manage&Settings > Blades > HTTPS Inspection > Configure in SmartDashboard

Go to Application&url filtering blade > Advanced > Https Inspection > Policy

Go to Manage&Settings > Blades > HTTPS Inspection > Policy

Go to Application&url filtering blade > Https Inspection > Policy

Q17. Which Threat Prevention Software Blade provides protection from malicious software that can infect your network computers? (Choose the best answer.)

IPS

Anti-Virus

Anti-Malware

Content Awareness

Q18. Which statement is TRUE of anti-spoofing?

Anti-spoofing is not needed when IPS software blade is enabled

It is more secure to create anti-spoofing groups manually

It is BEST Practice to have anti-spoofing groups in sync with the routing table

With dynamic routing enabled, anti-spoofing groups are updated automatically whenever there is a routing change

Q19. Which of the following is a new R80.10 Gateway feature that had not been available in R77.X and older?

The rule base can be built of layers, each containing a set of the security rules. Layers are inspected in the order in which they are defined, allowing control over the rule base flow and which security functionalities take precedence.

Limits the upload and download throughput for streaming media in the company to 1 Gbps.

Time object to a rule to make the rule active only during specified times.

Sub Policies are sets of rules that can be created and attached to specific rules. If the rule is matched, inspection will continue in the sub policy attached to it rather than in the next rule.

Q20. Fill in the blank: ____________ is the Gaia command that turns the server off.

sysdown

exit

halt

shut-down

Q21. Log query results can be exported to what file format?

Word Document (docx)

Comma Separated Value (csv)

Portable Document Format (pdf)

Text (txt)

Q22. Which of the following commands is used to monitor cluster members?

cphaprob state

cphaprob status

cphaprob

cluster state

Q23. What is the purpose of Captive Portal?

It manages user permission in SmartConsole

It provides remote access to SmartConsole

It authenticates users, allowing them access to the Internet and corporate resources

It authenticates users, allowing them access to the Gaia OS

Q24. Which tool provides a list of trusted files to the administrator so they can specify to the Threat Prevention blade that these files do not need to be scanned or analyzed?

ThreatWiki

Whitelist Files

AppWiki

IPS Protections

Q25. What is the main difference between Static NAT and Hide NAT?

Static NAT only allows incoming connections to protect your network.

Static NAT allow incoming and outgoing connections. Hide NAT only allows outgoing connections.

Static NAT only allows outgoing connections. Hide NAT allows incoming and outgoing connections.

Hide NAT only allows incoming connections to protect your network.

Q26. What is the purpose of the Clean-up Rule?

To log all traffic that is not explicitly allowed or denied in the Rule Base

To clean up policies found inconsistent with the compliance blade reports

To remove all rules that could have a conflict with other rules in the database

To eliminate duplicate log entries in the Security Gateway

Q27. Why is a Central License the preferred and recommended method of licensing?

Central Licensing is actually not supported with Gaia.

Central Licensing is the only option when deploying Gaia

Central Licensing ties to the IP address of a gateway and can be changed to any gateway if needed.

Central Licensing ties to the IP address of the management server and is not dependent on the IP of any gateway in the event it changes.

Q28. To provide updated malicious data signatures to all Threat Prevention blades, the Threat Prevention gateway does what with the data?

Cache the data to speed up its own function.

Share the data to the ThreatCloud for use by other Threat Prevention blades.

Log the traffic for Administrator viewing.

Delete the data to ensure an analysis of the data is done each time.

Q29. When enabling tracking on a rule, what is the default option?

Accounting Log

Extended Log

Log

Detailed Log

Q30. Which option would allow you to make a backup copy of the OS and Check Point configuration, without stopping Check Point processes?

All options stop Check Point processes

backup

migrate export

snapshot

Loading …

We offers you the latest free online 156-215.81.20 dumps to practice: https://www.topexamcollection.com/156-215.81.20-vce-collection.html

156-215.81.20 Practice Tests

[Q10-Q30] Latest 156-215.81.20 Practice Test Questions Verified Answers As Experienced in the Actual Test!

Related Certifications

156-215.81.20
156-315.80