Month End Special Sale Limited Time 70% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code: scxmas70

  1. Home
  2. Checkpoint
  3. CCTE
  4. 156-585 - Check Point Certified Troubleshooting Expert
Note! Following 156-585 Exam is Retired now. Please select the alternative replacement for your Exam Certification. The new exam code is 156-587

156-585 Exam Dumps - Check Point Certified Troubleshooting Expert

Go to page:
Question # 9

For TCP connections, when a packet arrives at the Firewall Kemel out of sequence or fragmented, which layer of IPS corrects this lo allow for proper inspection?

A.

Passive Streaming Library

B.

Protections

C.

Protocol Parsers

D.

Context Management

Full Access
Question # 10

For TCP connections, when a packet arrives at the Firewall Kernel out of sequence or fragmented, which layer of IPS corrects this to allow for proper inspection?

A.

Passive Streaming Library

B.

Protections

C.

Protocol Parsers

D.

Context Management

Full Access
Question # 11

Check Point Access Control Daemons contains several daemons for Software Blades and features Which Daemon is used for Application & Control URL Filtering?

A.

rad

B.

cprad

C.

pepd

D.

pdpd

Full Access
Question # 12

Which command can be run in Expert mode lo verify the core dump settings?

A.

grep cdm /config/db/coredump

B.

grep cdm /config/db/initial

C.

grep SFWDlR/config/db/initial

D.

cat /etc/sysconfig/coredump/cdm conf

Full Access
Question # 13

Which command is most useful for debugging the fwaccel module?

A.

fw zdebug

B.

securexl debug

C.

fwaccel dbg

D.

fw debug

Full Access
Question # 14

What table does command “fwaccel conns” pull information from?

A.

fwxl_conns

B.

SecureXLCon

C.

cphwd_db

D.

sxl_connections

Full Access
Question # 15

If you run the command "fw monitor -e accept src=10.1.1.201 or src=172.21.101.10 or src=192.0.2.10;" from the cli sh What will be captured?

A.

Packets from 10 1 1 201 going to 192.0 2.10

B.

Packets destined to 172 21 101 10 from 10.1.1.101

C.

Only packet going to 192.0.2.10

D.

fw monitor only works in expert mode so no packets will be captured

Full Access
Question # 16

James is using the same filter expression in fw monitor for CITRIX very often and instead of typing this all the time he wants to add it as a macro to the fw monitor definition file. What’s the name and location of this file?

A.

$FWDIR/lib/fwmonltor.def

B.

$FWDIR/conf/fwmonltor.def

C.

$FWDIR/lib/tcpip.def

D.

$FWDIR/lib/fw.monitor

Full Access
Go to page:

Hot Exams

ADM-201 Dumps
Platform-App-Builder Dumps
AZ-500 Dumps
350-701 Dumps
SY0-601 Dumps
NCSE-Core Dumps
PDP9 Dumps
DP-203 Dumps
AZ-700 Dumps
NSE7_EFW-7.0 Dumps
Integration-Architect Dumps
CS0-003 Dumps