156-215.77 | Virtual 156-215.77 Free Practice Questions 2021

It is impossible to pass Check Point 156-215.77 exam without any help in the short term. Come to us soon and find the most advanced, correct and guaranteed checkpoint 156 215.77. You will get a surprising result by our ccsa 156 215.77.

Check 156-215.77 free dumps before getting the full version:

NEW QUESTION 1
Which rules are not applied on a first-match basis?

  • A. User Authentication
  • B. Client Authentication
  • C. Session Authentication
  • D. Cleanup

Answer: A

NEW QUESTION 2
Which of the following is a viable consideration when determining Rule Base order?

  • A. Grouping IPS rules with dynamic drop rules
  • B. Placing more restrictive rules before more permissive rules
  • C. Grouping authentication rules with QOS rules
  • D. Grouping reject and drop rules after the Cleanup Rule

Answer: B

NEW QUESTION 3
Which item below in a Security Policy would be enforced first?

  • A. IP spoofing/IP options
  • B. Security Policy First rule
  • C. Administrator-defined Rule Base
  • D. Network Address Translation

Answer: A

NEW QUESTION 4
You just installed a new Web server in the DMZ that must be reachable from the Internet. You create a manual Static NAT rule as follows:
Source: Any || Destination: web_public_IP || Service: Any || Translated Source: original || Translated Destination: web_private_IP || Service: Original
“web_public_IP” is the node object that represents the new Web server’s public IP address. “web_private_IP” is the node object that represents the new Web site’s private IP address. You enable all settings from Global Properties > NAT.
When you try to browse the Web server from the Internet you see the error “page cannot be displayed”.
Which of the following is NOT a possible reason?

  • A. There is no Security Policy defined that allows HTTP traffic to the protected Web server.
  • B. There is no ARP table entry for the protected Web server’s public IP address.
  • C. There is no route defined on the Security Gateway for the public IP address to the Web server’s private IP address.
  • D. There is no NAT rule translating the source IP address of packets coming from the protected Web server.

Answer: A

NEW QUESTION 5
What port is used for communication to the User Center with SmartUpdate?

  • A. CPMI 200
  • B. TCP 8080
  • C. HTTP 80
  • D. HTTPS 443

Answer: D

NEW QUESTION 6
Exhibit:
156-215.77 dumps exhibit
Chris has lost SIC communication with his Security Gateway and he needs to re-establish SIC. What would be the correct order of steps needed to perform this task?

  • A. 5, 1, 2, 4
  • B. 5, 1, 4, 2
  • C. 3, 1, 4, 2
  • D. 2, 3, 1, 4

Answer: A

NEW QUESTION 7
Which component functions as the Internal Certificate Authority for R77?

  • A. Security Gateway
  • B. Management Server
  • C. Policy Server
  • D. SmartLSM

Answer: B

NEW QUESTION 8
What happens when you open the Gateway object window Trusted Communication and press and confirm Reset?
Exhibit:
156-215.77 dumps exhibit

  • A. Sic will be reset on the Gateway only.
  • B. The Gateway certificate will be revoked on the Gateway only.
  • C. The Gateway certificate will be revoked on the Security Management Server only.
  • D. The Gateway certificate will be revoked on the Security Management Server and SIC will be reset on the Gateway.

Answer: C

NEW QUESTION 9
Choose the correct statement regarding Implied Rules:

  • A. To edit Implied rules you go to: Launch Button > Policy > Global Properties > Firewall.
  • B. Implied rules are fixed rules that you cannot change.
  • C. You can directly edit the Implied rules by double-clicking on a specific Implicit rule.
  • D. You can edit the Implied rules but only if requested by Check Point support personnel.

Answer: A

NEW QUESTION 10
Can you use Captive Portal with HTTPS?

  • A. No, it only works with FTP
  • B. No, it only works with FTP and HTTP
  • C. Yes
  • D. No, it only works with HTTP

Answer: C

NEW QUESTION 11
Which command displays the installed Security Gateway kernel version?

  • A. fw printver
  • B. fw ver
  • C. fw ver -k
  • D. cpstat -gw

Answer: C

NEW QUESTION 12
You are working with multiple Security Gateways that enforce an extensive number of rules. To simplify security administration, which one of the following would you choose to do?

  • A. Eliminate all possible contradictory rules such as the Stealth or Cleanup rules.
  • B. Run separate SmartConsole instances to login and configure each Security Gateway directly.
  • C. Create network objects that restrict all applicable rules to only certain networks.
  • D. Create a separate Security Policy package for each remote Security Gateway.

Answer: D

NEW QUESTION 13
SmartView Tracker logs the following Security Administrator activities, EXCEPT:

  • A. Object creation, deletion, and editing
  • B. Tracking SLA compliance
  • C. Administrator login and logout
  • D. Rule Base changes

Answer: B

NEW QUESTION 14
Security Gateway R77 supports User Authentication for which of the following services? Select the response below that contains the MOST correct list of supported services.

  • A. SMTP, FTP, TELNET
  • B. SMTP, FTP, HTTP, TELNET
  • C. FTP, HTTP, TELNET
  • D. FTP, TELNET

Answer: C

NEW QUESTION 15
Spoofing is a method of:

  • A. Making packets appear as if they come from an authorized IP address.
  • B. Detecting people using false or wrong authentication logins.
  • C. Disguising an illegal IP address behind an authorized IP address through Port Address Translation.
  • D. Hiding your firewall from unauthorized users.

Answer: A

NEW QUESTION 16
How can you activate the SNMP daemon on a Check Point Security Management Server?

  • A. Using the command line, enter snmp_install.
  • B. From cpconfig, select SNMP extension.
  • C. Any of these options will work.
  • D. In SmartDashboard, right-click a Check Point object and select Activate SNMP.

Answer: B

NEW QUESTION 17
Where can an administrator specify the notification action to be taken by the firewall in the event that available disk space drops below 15%?

  • A. SmartView Monitor > Gateway Status > Threshold Settings
  • B. SmartView Tracker > Audit Tab > Gateway Counters
  • C. SmartView Monitor > Gateway Status > System Information > Thresholds
  • D. This can only be monitored by a user-defined script.

Answer: C

Recommend!! Get the Full 156-215.77 dumps in VCE and PDF From Certleader, Welcome to Download: https://www.certleader.com/156-215.77-dumps.html (New 388 Q&As Version)