156-115.77 Exam Dumps - Check Point Certified Security Master
Server A is subject to automatically static NAT and also resides on a network which is subject to automatic Hide NAT. With regards to address translation what will happen when Server A initiates outbound communication?
In Wire mode. if a packet reaches the gateway from a trusted source and is destined to a trusted destination, will the firewall do stateful inspection?
You are configuring OSPF on your Secure Platform firewall. You are in expert mode and run the commands:
interface vt-Gateway_C
IP ospf 1 area 0.0.0.0
exit
When you run show running-config you do not see your OSPF configuration listed Why?
After disabling SecureXL you ran command fw monitor to help troubleshoot a VPN issue. In your review you note that you only see pre-inbound traffic (“iâ€) and no other traffic after this. Which of the following reasons could explain this output?
You are setting up VPN between two gateways Local-GW and New-GW and want to use shared secret. For some reason New-GW is not showing up in the shared secret properties under mesh community properties. What is the most likely reason why the New-GW is not displayed?
The CoreXL software architecture includes the Secure Network Dispatcher (SND). One of the responsibilities of SND is to:
What does “cphwd_nat_templates_enabled=1†do when entered into fwkern.conf?
How would you determine the value of 'Maximum concurrent connections' of the NAT Table?
If the number of Firewall Workers for CoreXL is set higher on one member of a cluster than the other, the cluster will be in what state?
In a ClusterXL cluster with delayed synchronization, which of the following is not true?
What will be the outcome if you set the kernel parameters cphwd_nat_templates_enabled and cphwd_nat_templates_support?
Your gateway object is currently defined with a max connection count of 25k connections in Smart Dashboard. Which of the following commands would show you the current and peak connection counts?
What would be considered Best Practice to determine which IPS protections you can safely disable for your environment?
When performing a Clean IPS procedure to resolve a corrupt IPS files issue, what file is modified in order for the SDUU process to automatically update the IPS files after completing the procedure?
SNORT is a popular open source IDS, you would like to import SNORT rules from plain text into Check Point Smart Center. How can you accomplish this?
When the IPS ‘Bypass under Load’ mechanism detects that the certain CPU and memory usage thresholds have been reached, which of the following occurs?
What command would you use for a packet capture on an absolute position for TCP streaming (out) 1ffffe0
When using the command fw monitor, what command ensures the capture is accurate?
John is a Security Administrator of a Check Point platform. He has a mis-configuration issue that points to the Rule Base. To obtain information about the issue, John runs the command:
Which process should you debug when SmartDashboard authentication is rejected?
In IKEView while troubleshooting a VPN issue between your gateway and a partner site you see an entry that states “Invalid IDâ€. Which of the following is the most likely cause?
What command should a firewall administrator use to begin debugging SecureXL?
Look at the follow Rule Base display. Rule 5 contains a TIME object. What is the effect on the following rules?
SecureXL uses templating to accelerate traffic passing through the gateway. What command should you run to determine if Accept, Drop and NAT templating is enabled?
A system administrator wants to convert an IPv6 gateway from a standard gateway into a gateway running VSX mode. What does he need to consider?
When viewing connections using the command fw tab -t connections, all entries are displayed with a 6-tuple key, the elements of the 6-tuple include the following EXCEPT: