Latest 156-315.80 Study Guides 2021 - With Test Engine PDF
Get New 156-315.80 Practice Test Questions Answers
NEW QUESTION 61
John is using Management HA. Which Security Management Server should he use for making changes?
- A. active SmartConsole
- B. connect virtual IP of Smartcenter HA
- C. secondary Smartcenter
- D. primary Log Server
Answer: A
NEW QUESTION 62
With Mobile Access enabled, administrators select the web-based and native applications that can be accessed
by remote users and define the actions that users can perform the applications. Mobile Access encrypts all
traffic using:
- A. HTTPS for web-based applications and AES or RSA algorithm for native applications. For end users to
access the native application, no additional software is required. - B. HTTPS for web-based applications and AES or RSA algorithm for native applications. For end users to
access the native application, they need to install the SSL. Network Extender. - C. HTTPS for web-based applications and 3DES or RC4 algorithm for native applications. For end users to
access the native applications, no additional software is required. - D. HTTPS for web-based applications and 3DES or RC4 algorithm for native applications. For end users to
access the native applications, they need to install the SSL. Network Extender.
Answer: D
NEW QUESTION 63
What is the valid range for VRID value in VRRP configuration?
- A. 0 - 255
Virtual Router ID - Enter a unique ID number for this virtual router. The range of valid values is 1 to 255. - B. 0 - 254
- C. 1 - 255
- D. 1 - 254
Answer: C
NEW QUESTION 64
How can SmartView Web application accessed?
- A. https://<Security Management IP address>/smartview/
- B. https://<Security Management IP address>:4434/smartview/
- C. https://<Security Management IP address>/smartview/
- D. https://<Security Management IP address>/ smartview
Answer: D
NEW QUESTION 65
In what way is Secure Network Distributor (SND) a relevant feature of the Security Gateway?
- A. SND is a feature to accelerate multiple SSL VPN connections
- B. SND is used to distribute packets among Firewall instances
- C. SND is a feature of fw monitor to capture accelerated packets
- D. SND is an alternative to IPSec Main Mode, using only 3 packets
Answer: B
NEW QUESTION 66
What will be the effect of running the following command on the Security Management Server?
- A. Reset SIC on all gateways.
- B. Remove the installed Security Policy.
- C. No effect.
- D. Remove the local ACL lists.
Answer: B
NEW QUESTION 67
Which command shows detailed information about VPN tunnels?
- A. vpn tu
- B. cpview
- C. cat $FWDIR/conf/vpn.conf
- D. vpn tu tlist
Answer: D
Explanation:
Explanation/Reference: https://sc1.checkpoint.com/documents/R80.20_GA/WebAdminGuides/EN/ CP_R80.20_CLI_ReferenceGuide/html_frameset.htm?topic=documents/R80.20_GA/WebAdminGuides/EN/ CP_R80.20_CLI_ReferenceGuide/209239
NEW QUESTION 68
In which VPN community is a satellite VPN gateway not allowed to create a VPN tunnel with another satellite VPN gateway?
- A. Star
- B. Combined
- C. Meshed
- D. Pentagon
Answer: A
Explanation:
Explanation/Reference: https://sc1.checkpoint.com/documents/R76/CP_R76_Firewall_WebAdmin/92709.htm
NEW QUESTION 69
SandBlast Mobile identifies threats in mobile devices by using on-device, network, and cloud-based algorithms and has four dedicated components that constantly work together to protect mobile devices and their data.
Which component is NOT part of the SandBlast Mobile solution?
- A. Gateway
- B. Behavior Risk Engine
- C. Management Dashboard
- D. Personal User Storage
Answer: D
Explanation:
Explanation/Reference: https://community.checkpoint.com/docs/DOC-3072-sandblast-mobile-architecture-overview
NEW QUESTION 70
Which one of the following is true about Threat Extraction?
- A. Delivers file only if no Threat found
- B. Always delivers a file to user.
- C. Can take up to 3 minutes to complete
- D. Works on all Office, Executable, and PDF files
Answer: D
NEW QUESTION 71
What is the purpose of extended master key extension/session hash?
- A. Supplement DLP data watermark
- B. Special TCP handshaking extension
- C. UDP VOIP protocol extension
- D. In case of TLS1.x it is a prevention of a Man-in-the-Middle attack/disclosure of the client-server
communication
Answer: D
NEW QUESTION 72
When users connect to the Mobile Access portal they are unable to open File shares. Which log file
would you want to examine?
- A. Evpnd.elg
- B. fw.elg
- C. vpnd.elg
- D. httpd.elg
Answer: C
NEW QUESTION 73
Which Mobile Access Application allows a secure container on Mobile devices to give users access to internal website, file share and emails?
- A. Check Point Capsule Remote
- B. Check Point Remote User
- C. Check Point Mobile Web Portal
- D. Check Point Capsule Workspace
Answer: C
Explanation:
Explanation/Reference: https://sc1.checkpoint.com/documents/R76/CP_R76_Mobile_Access_WebAdmin/41723.htm
NEW QUESTION 74
Which command is used to add users to or from existing roles?
- A. Add rba user <User Name>
- B. Add user <User Name> roles <List>
- C. Add rba user <User Name> roles <List>
- D. Add user <User Name>
Answer: C
Explanation:
Explanation/Reference: https://sc1.checkpoint.com/documents/R76/CP_R76_Gaia_WebAdmin/73101.htm
NEW QUESTION 75
Tom has been tasked to install Check Point R80 in a distributed deployment. Before Tom installs the systems this way, how many machines will he need if he does NOT include a SmartConsole machine in his calculations?
- A. One machine, but it needs to be installed using SecurePlatform for compatibility purposes.
- B. Three machines
- C. One machine
- D. Two machines
Answer: D
NEW QUESTION 76
The following command is used to verify the CPUSE version:
- A. HostName:0>show installer build
- B. [Expert@HostName:0]#show installer status build
- C. [Expert@HostName:0]#show installer status
- D. HostName:0>show installer status build
Answer: D
Explanation:
Explanation/Reference: http://dkcheckpoint.blogspot.com/2017/11/how-to-fix-deployment-agent-issues.html
NEW QUESTION 77
Fill in the blank: Identity Awareness AD-Query is using the Microsoft _______________ API to learn users
from AD.
- A. XML
- B. Services.msc
- C. WMI
- D. Eventvwr
Answer: C
NEW QUESTION 78
In the Check Point Firewall Kernel Module, each Kernel is associated with a key, which specifies the type of traffic applicable to the chain module. For Stateful Mode configuration, chain modules marked with __________________ will not apply.
- A. ffff
- B. 0
- C. 1
- D. 2
Answer: C
NEW QUESTION 79
What is the amount CPU cores required to enable CoreXL?
- A. 0
- B. 1
- C. 2
- D. 3
Answer: D
NEW QUESTION 80
To fully enable Dynamic Dispatcher on a Security Gateway:
- A. Edit/proc/interrupts to include multik set_mode 1 at the bottom of the file, save, and reboot.
- B. Using cpconfig, update the Dynamic Dispatcher value to "full" under the CoreXL menu.
- C. run fw ctl multik set_mode 9 in Expert mode and then Reboot.
- D. run fw multik set_mode 1 in Expert mode and then reboot.
Answer: C
Explanation:
Explanation/Reference: https://supportcenter.checkpoint.com/supportcenter/portal?
eventSubmit_doGoviewsolutiondetails=&solutionid=sk105261
NEW QUESTION 81
What scenario indicates that SecureXL is enabled?
- A. fwaccel commands can be used in clish
- B. Only one packet in a stream is seen in a fw monitor packet capture
- C. SecureXL can be disabled in cpconfig
- D. Dynamic objects are available in the Object Explorer
Answer: A
NEW QUESTION 82
......
156-315.80 Exam topics
Candidates must know the exam topics before they start of preparation. Because it will really help them in hitting the core. Our 156-315.80 dumps will include the following topics:
- Monitoring Traffic and Connections
- Deployment Platforms and Security Policies
- Check Point Technology Overview
- Network Address Translations
- Using Smart Update
156-315.80 Dumps and Exam Test Engine: https://www.actualtorrent.com/156-315.80-questions-answers.html