156-215.81 | The Secret Of CheckPoint 156-215.81 Samples

NEW QUESTION 1
In which scenario will an administrator need to manually define Proxy ARP?

• A. When they configure an "Automatic Static NAT" which translates to an IP address that does not belong to one of the firewall's interfaces.
• B. When they configure an "Automatic Hide NAT" which translates to an IP address that does not belong to one of the firewall's interfaces.
• C. When they configure a "Manual Static NAT" which translates to an IP address that does not belong to one of the firewall's interfaces.
• D. When they configure a "Manual Hide NAT" which translates to an IP address that belongs to one of the firewall's interfaces.

Answer: C

NEW QUESTION 2
Your internal networks 10.1.1.0/24, 10.2.2.0/24 and 192.168.0.0/16 are behind the Internet Security Gateway. Considering that Layer 2 and Layer 3 setup is correct, what are the steps you will need to do in SmartConsole in order to get the connection working?

• A. 1. Define an accept rule in Security Policy.2. Define Security Gateway to hide all internal networks behind the gateway’s external IP.3. Publish and install the policy.
• B. 1. Define an accept rule in Security Policy.2. Define automatic NAT for each network to NAT the networks behind a public IP.3. Publish the policy.
• C. 1. Define an accept rule in Security Policy.2. Define automatic NAT for each network to NAT the networks behind a public IP.3. Publish and install the policy.
• D. 1. Define an accept rule in Security Policy.2. Define Security Gateway to hide all internal networks behind the gateway’s external IP.3. Publish the policy.

Answer: C

NEW QUESTION 3
How Capsule Connect and Capsule Workspace differ?

• A. Capsule Connect provides a Layer3 VP
• B. Capsule Workspace provides a Desktop with usable applications
• C. Capsule Workspace can provide access to any application
• D. Capsule Connect provides Business data isolation
• E. Capsule Connect does not require an installed application at client

Answer: A

NEW QUESTION 4
Which product correlates logs and detects security threats, providing a centralized display of potential attack patterns from all network devices?

• A. SmartDashboard
• B. SmartEvent
• C. SmartView Monitor
• D. SmartUpdate

Answer: B

Explanation:
SmartEvent correlates logs from all Check Point enforcement points, including end-points, to identify suspicious activity from the clutter. Rapid data analysis and custom event logs immediately alert administrators to anomalous behavior such as someone attempting to use the same credential in multiple geographies simultaneously. Ref: https://www.checkpoint.com/products/smartevent/

NEW QUESTION 5
You have enabled "Extended Log" as a tracking option to a security rule. However, you are still not seeing any data type information. What is the MOST likely reason?

• A. Identity Awareness is not enabled.
• B. Log Trimming is enabled.
• C. Logging has disk space issues
• D. Content Awareness is not enabled.

Answer: D

NEW QUESTION 6
View the rule below. What does the pen-symbol in the left column mean?

• A. Those rules have been published in the current session.
• B. Rules have been edited by the logged in administrator, but the policy has not been published yet.
• C. Another user has currently locked the rules for editing.
• D. The configuration lock is presen
• E. Click the pen symbol in order to gain the lock.

Answer: B

NEW QUESTION 7
After the initial installation on Check Point appliance, you notice that the Management interface and default gateway are incorrect. Which commands could you use to set the IP to 192.168.80.200/24 and default gateway to 192.168.80.1.

• A. set interface Mgmt ipv4-address 192.168.80.200 mask-length 24set static-route default nexthop gateway address 192.168.80.1 onsave config
• B. add interface Mgmt ipv4-address 192.168.80.200 255.255.255.0add static-route 0.0.0.0.0.0.0.0 gw 192.168.80.1 onsave config
• C. set interface Mgmt ipv4-address 192.168.80.200 255.255.255.0add static-route 0.0.0.0.0.0.0.0 gw 192.168.80.1 onsave config
• D. add interface Mgmt ipv4-address 192.168.80.200 mask-length 24add static-route default nexthop gateway address 192.168.80.1 onsave config

Answer: A

NEW QUESTION 8
Which of the following is the most secure means of authentication?

• A. Password
• B. Certificate
• C. Token
• D. Pre-shared secret

Answer: B

NEW QUESTION 9
Which of the following commands is used to verify license installation?

• A. Cplic verify license
• B. Cplic print
• C. Cplic show
• D. Cplic license

Answer: B

NEW QUESTION 10
Which policy type is used to enforce bandwidth and traffic control rules?

• A. Access Control
• B. Threat Emulation
• C. Threat Prevention
• D. QoS

Answer: D

Explanation:
https://sc1.checkpoint.com/documents/R80.30/WebAdminGuides/EN/CP_R80.30_QoS_AdminGuide/html_fram

NEW QUESTION 11
Fill in the blanks: A _____ license requires an administrator to designate a gateway for attachment whereas a _______ license is automatically attached to a Security Gateway.

• A. Formal; corporate
• B. Local; formal
• C. Local; central
• D. Central; local

Answer: D

NEW QUESTION 12
Fill in the blanks: The Application Layer Firewalls inspect traffic through ______ the layer(s) of the TCP/IP model and up to and including the ______ layer.

• A. Upper; Application
• B. First two; Internet
• C. Lower; Application
• D. First two; Transport

Answer: C

Explanation:
application firewalls, or application layer firewalls, use a series of configured policies to determine whether to block or allow communications to or from an app.

NEW QUESTION 13
Name the pre-defined Roles included in Gaia OS.

• A. AdminRole, and MonitorRole
• B. ReadWriteRole, and ReadyOnly Role
• C. AdminRole, cloningAdminRole, and Monitor Role
• D. AdminRole

Answer: A

NEW QUESTION 14
What object type would you use to grant network access to an LDAP user group?

• A. Access Role
• B. User Group
• C. SmartDirectory Group
• D. Group Template

Answer: B

NEW QUESTION 15
Fill in the blanks: There are ______ types of software containers ______.

• A. Three; security management, Security Gateway, and endpoint security
• B. Three; Security gateway, endpoint security, and gateway management
• C. Two; security management and endpoint security
• D. Two; endpoint security and Security Gateway

Answer: A

Explanation:
There are three types of Software Containers: Security Management, Security Gateway, and Endpoint Security.

NEW QUESTION 16
Which of the following licenses are considered temporary?

• A. Plug-and-play (Trial) and Evaluation
• B. Perpetual and Trial
• C. Evaluation and Subscription
• D. Subscription and Perpetual

Answer: A

NEW QUESTION 17
How can the changes made by an administrator before publishing the session be seen by a superuser administrator?

• A. By impersonating the administrator with the ‘Login as…’ option
• B. They cannot be seen
• C. From the SmartView Tracker audit log
• D. From Manage and Settings > Sessions, right click on the session and click ‘View Changes…’

Answer: D

Explanation:
From the Smartconsole, you can possibly view the changes via Manage & setting, Sessions

NEW QUESTION 18
......