CheckPoint 156-215.80 Dumps - 100% Cover Real Exam Questions (Updated 527 Questions) [Q293-Q316]

NEW QUESTION 293
Which Check Point software blade prevents malicious files from entering a network using virus signatures and anomaly-based protections from ThreatCloud?

Firewall

Application Control

Anti-spam and Email Security

Antivirus

NEW QUESTION 294
What are the two high availability modes?

Load Sharing and Legacy

Traditional and New

Active and Standby

New and Legacy

NEW QUESTION 295
Which of the following is NOT a tracking option?

Partial log

Log

Network log

Full log

NEW QUESTION 296
What is the default time length that Hit Count Data is kept?

3 month

4 weeks

12 months

6 months

NEW QUESTION 297
You are the administrator for ABC Corp. You have logged into your R80 Management server. You are making some changes in the Rule Base and notice that rule No.6 has a pencil icon next to it.

What does this mean?

The rule No.6 has been marked for deletion in your Management session.

The rule No.6 has been marked for deletion in another Management session.

The rule No.6 has been marked for editing in your Management session.

The rule No.6 has been marked for editing in another Management session.

NEW QUESTION 298
Fill in the blank: The __________ is used to obtain identification and security information about network
users.

User Directory

User server

UserCheck

User index

NEW QUESTION 299
Which Check Point software blade prevents malicious files from entering a network using virus signatures and anomaly-based protections from ThreatCloud?

Firewall

Application Control

Anti-spam and Email Security

Antivirus

NEW QUESTION 300
You are the administrator for ABC Corp. You have logged into your R80 Management server. You are making some changes in the Rule Base and notice that rule No.6 has a pencil icon next to it.

What does this mean?

The rule No.6 has been marked for deletion in your Management session.

The rule No.6 has been marked for deletion in another Management session.

The rule No.6 has been marked for editing in your Management session.

The rule No.6 has been marked for editing in another Management session.

NEW QUESTION 301
Which Check Point software blade provides visibility of users, groups and machines while also providing access control through identity-based policies?

Firewall

Identity Awareness

Application Control

URL Filtering

NEW QUESTION 302
Which of the following is NOT a set of Regulatory Requirements related to Information Security?

ISO 37001

Sarbanes Oxley (SOX)

HIPAA

PCI

NEW QUESTION 303
SandBlast offers flexibility in implementation based on their individual business needs.
What is an option for deployment of Check Point SandBlast Zero-Day Protection?

Smart Cloud Services

Load Sharing Mode Services

Threat Agent Solution

Public Cloud Services

NEW QUESTION 304
What is the purpose of a Stealth Rule?

A rule used to hide a server’s IP address from the outside world.

A rule that allows administrators to access SmartDashboard from any device.

To drop any traffic destined for the firewall that is not otherwise explicitly allowed.

A rule at the end of your policy to drop any traffic that is not explicitly allowed.

NEW QUESTION 305
Phase 1 of the two-phase negotiation process conducted by IKE operates in ______ mode.

Main

Authentication

Quick

High Alert

NEW QUESTION 306
SmartEvent does NOT use which of the following procedures to identity events:

Matching a log against each event definition

Create an event candidate

Matching a log against local exclusions

Matching a log against global exclusions

NEW QUESTION 307
In Security Gateways, SIC uses ______________ for encryption.

AES-128

AES-256

DES

3DES

NEW QUESTION 308
What does it mean if Bob gets this result on an object search? Refer to the image below. Choose the BEST answer.

Search detailed is missing the subnet mask.

There is no object on the database with that name or that IP address.

There is no object on the database with that IP address.

Object does not have a NAT IP address.

NEW QUESTION 309
Check Point APIs allow system engineers and developers to make changes to their organization’s security policy with CLI tools and Web Services for all of the following except:

Create new dashboards to manage 3rd party task

Create products that use and enhance 3rd party solutions

Execute automated scripts to perform common tasks

Create products that use and enhance the Check Point Solution

NEW QUESTION 310
What is a reason for manual creation of a NAT rule?

In R80 all Network Address Translation is done automatically and there is no need for manually defined NAT-rules.

Network Address Translation of RFC1918-compliant networks is needed to access the Internet.

Network Address Translation is desired for some services, but not for others.

The public IP-address is different from the gateway’s external IP

NEW QUESTION 311
You have successfully backed up your Check Point configurations without the OS information. What command would you use to restore this backup?

restore_backup

import backup

cp_merge

migrate import

NEW QUESTION 312
The SIC Status “Unknown” means

There is connection between the gateway and Security Management Server but it is not trusted.

The secure communication is established.

There is no connection between the gateway and Security Management Server.

The Security Management Server can contact the gateway, but cannot establish SIC.

NEW QUESTION 313
You want to reset SIC between smberlin and sgosaka.

In SmartDashboard, you choose sgosaka, Communication, Reset. On sgosaka, you start cpconfig, choose
Secure Internal Communication and enter the new SIC Activation Key. The screen reads The SIC was
successfully initialized and jumps back to the menu. When trying to establish a connection, instead of a
working connection, you receive this error message:

What is the reason for this behavior?

The Gateway was not rebooted, which is necessary to change the SIC key.

You must first initialize the Gateway object in SmartDashboard (i.e., right-click on the object, choose
Basic Setup > Initialize).

The check Point services on the Gateway were not restarted because you are still in the cpconfig utility.

The activation key contains letters that are on different keys on localized keyboards. Therefore, the
activation can not be typed in a matching fashion.

NEW QUESTION 314
Which of the following is NOT supported by Bridge Mode Check Point Security Gateway?

Antivirus

Data Loss Prevention

NAT

Application Control

NEW QUESTION 315
You are going to perform a major upgrade. Which back up solution should you use to ensure your database can be restored on that device?

backup

logswitch

Database Revision

snapshot

NEW QUESTION 316
Fill in the blank: It is Best Practice to have a _____ rule at the end of each policy layer.

Explicit Drop

Implied Drop

Explicit CleanUp

Implicit Drop

CheckPoint 156-215.80 Dumps – 100% Cover Real Exam Questions (Updated 527 Questions) [Q293-Q316]

admin

Leave a Reply Cancel reply

Related posts:

admin

You might also like

Leave a Reply Cancel reply