http://https://www.examslabs.com/CheckPoint/CheckPointCertification/best-156-215.77-exam-dumps.html (390 Q&As Dumps, 30%OFF Special Discount: bmzblwH7 )
NEW QUESTION NO: 8
You can include External commands in SmartView Tracker by the menu Tools > Custom Commands.
The Security Management Server is running under GAiA, and the GUI is on a system running Microsoft Windows. How do you run the command traceroute on an IP address?
A. There is no possibility to expand the three pre-defined options Ping, Whois, and Nslookup.
B. Go to the menu Tools > Custom Commands and configure the Windows command tracert.exe to the list.
C. Use the program GUIdbedit to add the command traceroute to the Security Management Server properties.
D. Go to the menu, Tools > Custom Commands and configure the Linux command traceroute to the list.
Answer: B
NEW QUESTION NO: 9
SmartView Tracker R77 consists of three different modes. They are:
A. Log, Active, and Audit
B. Network and Endpoint, Active, and Management
C. Log, Track, and Management
D. Log, Active, and Management
Answer: B
NEW QUESTION NO: 10
Where is the easiest and BEST place to find information about connections between two machines?
A. On a Security Management Server, using SmartView Tracker.
B. On a Security Gateway Console interface; it gives you detailed access to log files and state table information.
C. On a Security Gateway using the command fw log.
D. All options are valid.
Answer: A
NEW QUESTION NO: 11
What is the purpose of an Identity Agent?
A. Manual entry of user credentials for LDAP authentication
B. Provide user and machine identity to a gateway
C. Audit a user's access, and send that data to a log server
D. Disable Single Sign On
Answer: B
NEW QUESTION NO: 12
What is one potential downside or drawback to choosing the Standalone deployment option instead of the Distributed deployment option?
A. Degrades performance as the Security Policy grows in size.
B. Increases cost
C. Requires additional software subscription
D. Requires additional Check Point Appliances
Answer: A
NEW QUESTION NO: 13
You are a Security Administrator preparing to deploy a new HFA (Hotfix Accumulator) to ten Security Gateways at five geographically separate locations. What is the BEST method to implement this HFA?
A. Use a SSH connection to SCP the HFA to each Security Gateway. Once copied locally, initiate a remote installation command and monitor the installation progress with SmartView Monitor.
B. Use SmartUpdate to install the packages to each of the Security Gateways remotely.
C. Send a CD-ROM with the HFA to each location and have local personnel install it.
D. Send a Certified Security Engineer to each site to perform the update.
Answer: B
NEW QUESTION NO: 14
Which of the following can be found in cpinfo from an enforcement point?
A. The complete file objects_5_0.c
B. Policy file information specific to this enforcement point
C. VPN keys for all established connections to all enforcement points
D. Everything NOT contained in the file r2info
Answer: B
NEW QUESTION NO: 15
Which rule is responsible for the installation failure? Exhibit:
A. Rule 5
B. Rule 4
C. Rule 3
D. Rule 6
Answer: B
NEW QUESTION NO: 16
You want to reset SIC between smberlin and sgosaka.
In SmartDashboard, you choose sgosaka, Communication, Reset. On sgosaka, you start cpconfig, choose Secure Internal Communication and enter the new SIC Activation Key. The screen reads The SIC was successfully initialized and jumps back to the cpconfig menu. When trying to establish a connection, instead of a working connection, you receive this error message:
What is the reason for this behavior?
A. You must first initialize the Gateway object in SmartDashboard (i.e., right-click on the object, choose Basic Setup > Initialize).
B. The activation key contains letters that are on different keys on localized keyboards. Therefore, the activation can not be typed in a matching fashion.
C. The Check Point services on the Gateway were not restarted because you are still in the cpconfig utility.
D. The Gateway was not rebooted, which is necessary to change the SIC key.
Answer: C
NEW QUESTION NO: 17
Which feature or command provides the easiest path for Security Administrators to revert to earlier versions of the same Security Policy and objects configuration?
A. upgrade_export/upgrade_import
B. Database Revision Control
C. Policy Package management
D. dbexport/dbimport
Answer: B
NEW QUESTION NO: 18
You find a suspicious FTP site trying to connect to one of your internal hosts. How do you block it in real time and verify it is successfully blocked? Highlight the suspicious connection in SmartView Tracker:
A. Log mode. Block it using Tools > Block Intruder menu. Observe in the Log mode that the suspicious connection is listed in this SmartView Tracker view as "dropped ?.
B. Active mode. Block it using Tools > Block Intruder menu. Observe in the Active mode that the suspicious connection does not appear again in this SmartView Tracker view.
C. Active mode. Block it using Tools > Block Intruder menu. Observe in the Active mode that the suspicious connection is listed in this SmartView Tracker view as "dropped ?.
D. Log mode. Block it using Tools > Block Intruder menu. Observe in the Log mode that the suspicious connection does not appear again in this SmartView Tracker view.
Answer: B