This page was exported from Valid Premium Exam [ http://premium.validexam.com ] Export date:Thu Nov 14 16:31:15 2024 / +0000 GMT ___________________________________________________ Title: Nov 01, 2024 Updated 156-215.81.20 Dumps Questions For CheckPoint Exam [Q147-Q170] --------------------------------------------------- Nov 01, 2024 Updated 156-215.81.20 Dumps Questions For CheckPoint Exam Best Value Available Preparation Guide for 156-215.81.20 Exam QUESTION 147What are the three components for Check Point Capsule?  Capsule Docs, Capsule Cloud, Capsule Connect  Capsule Workspace, Capsule Cloud, Capsule Connect  Capsule Workspace, Capsule Docs, Capsule Connect  Capsule Workspace, Capsule Docs, Capsule Cloud QUESTION 148Which product correlates logs and detects security threats, providing a centralized display of potential attack patterns from all network devices?  SmartDashboard  SmartEvent  SmartView Monitor  SmartUpdate QUESTION 149Which two of these Check Point Protocols are used by?  ELA and CPD  FWD and LEA  FWD and CPLOG  ELA and CPLOG QUESTION 150Which path below is available only when CoreXL is enabled?  Slow path  Firewall path  Medium path  Accelerated path QUESTION 151What is the BEST method to deploy Identity Awareness for roaming users?  Use Office Mode  Use identity agents  Share user identities between gateways  Use captive portal QUESTION 152What is the purpose of a Clean-up Rule?  Clean-up Rules do not server any purpose.  Provide a metric for determining unnecessary rules.  To drop any traffic that is not explicitly allowed.  Used to better optimize a policy. QUESTION 153Which of the following statements about Site-to-Site VPN Domain-based is NOT true?  Route-based- The Security Gateways will have a Virtual Tunnel Interface (VTI) for each VPN Tunnel with a peer VPN Gateway. The Routing Table can have routes to forward traffic to these VTls. Any traffic routed through a VTI is automatically identified as VPN Traffic and is passed through the VPN Tunnel associated with the VTI.  Domain-based- VPN domains are pre-defined for all VPN Gateways. A VPN domain is a service or user that can send or receive VPN traffic through a VPN Gateway.  Domain-based- VPN domains are pre-defined for all VPN Gateways. A VPN domain is a host or network that can send or receive VPN traffic through a VPN Gateway.  Domain-based- VPN domains are pre-defined for all VPN Gateways. When the Security Gateway encounters traffic originating from one VPN Domain with the destination to a VPN Domain of another VPN Gateway, that traffic is identified as VPN traffic and is sent through the VPN Tunnel between the two Gateways. QUESTION 154What technologies are used to deny or permit network traffic?  Stateful Inspection. Firewall Blade, and URL’Application Blade  Packet Filtenng. Stateful Inspection, and Application Layer Firewall  Firewall Blade. URL/Application Blade and IPS  Stateful Inspection. URL/Application Blade, and Threat Prevention QUESTION 155What does it mean if Deyra sees the gateway status:Choose the BEST answer.  SmartCenter Server cannot reach this Security Gateway  There is a blade reporting a problem  VPN software blade is reporting a malfunction  Security Gateway’s MGNT NIC card is disconnected. QUESTION 156The Online Activation method is available for Check Point manufactured appliances.How does the administrator use the Online Activation method?  The SmartLicensing GUI tool must be launched from the SmartConsole for the Online Activation tool to start automatically.  No action is required if the firewall has internet access and a DNS server to resolve domain names.  Using the Gaia First Time Configuration Wizard, the appliance connects to the Check Point User Center and downloads all necessary licenses and contracts.  The cpinfo command must be run on the firewall with the switch -online-license-activation. QUESTION 157When doing a Stand-Alone Installation, you would install the Security Management Server with which other Check Point architecture component?  None, Security Management Server would be installed by itself.  SmartConsole  SecureClient  SmartEvent QUESTION 158After a new Log Server is added to the environment and the SIC trust has been established with the SMS what will the gateways do?  The gateways can only send logs to an SMS and cannot send logs to a Log Server. Log Servers are proprietary log archive servers.  Gateways will send new firewall logs to the new Log Server as soon as the SIC trust is set up between the SMS and the new Log Server.  The firewalls will detect the new Log Server after the next policy install and redirect the new logs to the new Log Server.  Logs are not automatically forwarded to a new Log Server. SmartConsole must be used to manually configure each gateway to send its logs to the server. QUESTION 159You want to verify if there are unsaved changes in GAiA that will be lost with a reboot.What command can be used?  show unsaved  show save-state  show configuration diff  show config-state QUESTION 160The default shell of the Gaia CLI is cli.sh.How do you change from the cli.sh shell to the advanced shell to run Linux commands?  Execute the command ‘enable’ in the cli.sh shell  Execute the ‘conf t’ command in the cli.sh shell  Execute the command ‘expert’ in the cli.sh shell  Execute the ‘exit’ command in the cli.sh shell QUESTION 161Which of the following is used to enforce changes made to a Rule Base?  Publish database  Save changes  Install policy  Activate policy QUESTION 162Which command shows the installed licenses in Expert mode?  print cplic  show licenses  fwlic print  cplic print QUESTION 163Which of these is NOT a feature or benefit of Application Control?  Eliminate unknown and unwanted applications in your network to reduce IT complexity and application risk.  Identify and control which applications are in your IT environment and which to add to the IT environment.  Scans the content of files being downloaded by users in order to make policy decisions.  Automatically identify trusted software that has authorization to run QUESTION 164R80 is supported by which of the following operating systems:  Windows only  Gaia only  Gaia, SecurePlatform, and Windows  SecurePlatform only QUESTION 165Fill in the blank: With the User Directory Software Blade, you can create user definitions on a(n)___________ Server.  SecurID  LDAP  NT domain  SMTP QUESTION 166Which Check Point Software Wade provides visibility of users, groups and machines while also providing access control through identity-based policies?  Firewall  Identity Awareness  Application Control  URL Filtering QUESTION 167Which software blade enables Access Control policies to accept, drop, or limit web site access based on user, group, and/or machine?  Application Control  Data Awareness  Identity Awareness  Threat Emulation QUESTION 168A layer can support different combinations of blades What are the supported blades:  Firewall. URLF, Content Awareness and Mobile Access  Firewall (Network Access Control). Application & URL Filtering. Content Awareness and Mobile Access  Firewall. NAT, Content Awareness and Mobile Access  Firewall (Network Access Control). Application & URL Filtering and Content Awareness QUESTION 169After trust has been established between the Check Point components, what is TRUE about name and IP-address changes?  Security Gateway IP-address cannot be changed without re-establishing the trust  The Security Gateway name cannot be changed in command line without re-establishing trust  The Security Management Server name cannot be changed in SmartConsole without re-establishing trust  The Security Management Server IP-address cannot be changed without re-establishing the trust QUESTION 170What are the steps to configure the HTTPS Inspection Policy?  Go to Manage&Settings > Blades > HTTPS Inspection > Configure in SmartDashboard  Go to Application&url filtering blade > Advanced > Https Inspection > Policy  Go to Manage&Settings > Blades > HTTPS Inspection > Policy  Go to Application&url filtering blade > Https Inspection > Policy  Loading … Full 156-215.81.20 Practice Test and 400 Unique Questions, Get it Now!: https://www.validexam.com/156-215.81.20-latest-dumps.html --------------------------------------------------- Images: https://premium.validexam.com/wp-content/plugins/watu/loading.gif https://premium.validexam.com/wp-content/plugins/watu/loading.gif --------------------------------------------------- --------------------------------------------------- Post date: 2024-11-01 15:07:10 Post date GMT: 2024-11-01 15:07:10 Post modified date: 2024-11-01 15:07:10 Post modified date GMT: 2024-11-01 15:07:10