• Home
  • Articles
  • Ultimate Guide to Prepare 156-215.80 Certification Exam for CCSA R80 in 2021 [Q97-Q117]

Ultimate Guide to Prepare 156-215.80 Certification Exam for CCSA R80 in 2021 [Q97-Q117]

Share

Ultimate Guide to Prepare 156-215.80 Certification Exam for CCSA R80 in 2021

Use Real 156-215.80 Dumps - CheckPoint Correct Answers updated on 2021

NEW QUESTION 97
Choose what BEST describes the Policy Layer Traffic Inspection.

  • A. If a packet does not match a Network Policy Layer, the matching continues to its inline layer.
  • B. If a packet matches an inline layer, it will continue matching the next layer.
  • C. If a packet does not match any of the inline layers, the matching continues to the next Layer.
  • D. If a packet does not match any of the inline layers, the packet will be matched against the Implicit
    Clean-up Rule.

Answer: B

 

NEW QUESTION 98
Which of the following is NOT a back up method?

  • A. System backup
  • B. Migrate
  • C. snapshot
  • D. Save backup

Answer: D

Explanation:
Explanation
The built-in Gaia backup procedures:
* Snapshot Management
* System Backup (and System Restore)
* Save/Show Configuration (and Load Configuration)
Check Point provides three different procedures for backing up (and restoring) the operating system and networking parameters on your appliances.
* Snapshot (Revert)
* Backup (Restore)
* upgrade_export (Migrate)

 

NEW QUESTION 99
In which scenario is it a valid option to transfer a license from one hardware device to another?

  • A. From a 4400 Appliance to an HP Open Server
  • B. From an IBM Open Server to a 2200 Appliance
  • C. From an IBM Open Server to an HP Open Server
  • D. From an 4400 Appliance to a 2200 Appliance

Answer: C

 

NEW QUESTION 100
Fill in the blank: The R80 utility fw monitor is used to troubleshoot _____________

  • A. Phase two key negotiation
  • B. Traffic issues
  • C. LDAP conflicts
  • D. User data base corruption

Answer: B

Explanation:
Explanation
Check Point's FW Monitor is a powerful built-in tool for capturing network traffic at the packet level. The FW Monitor utility captures network packets at multiple capture points along the FireWall inspection chains.
These captured packets can be inspected later using the WireShark

 

NEW QUESTION 101
Due to high CPU workload on the Security Gateway, the security administrator decided to purchase a new
multicore CPU to replace the existing single core CPU. After installation, is the administrator required to
perform any additional tasks?

  • A. Go to clash-Run cpstop | Run cpstart
  • B. Administrator does not need to perform any task. Check Point will make use of the newly installed CPU
    and Cores
  • C. Go to clash-Run cpconfig | Configure CoreXL to make use of the additional Cores | Exit cpconfig |
    Reboot Security Gateway
  • D. Go to clash-Run cpconfig | Configure CoreXL to make use of the additional Cores | Exit cpconfig |
    Reboot Security Gateway | Install Security Policy

Answer: C

 

NEW QUESTION 102
Which is NOT an encryption algorithm that can be used in an IPSEC Security Association (Phase 2)?

  • A. AES-GCM-128
  • B. AES-CBC-256
  • C. AES-GCM-256

Answer: B

Explanation:
Explanation
References:

 

NEW QUESTION 103
After the initial installation the First Time Configuration Wizard should be run. Select the BEST answer.

  • A. Connection to the internet is required before running the First Time Configuration wizard.
  • B. First time Configuration Wizard can only be run from the WebUI.
  • C. First Time Configuration Wizard can be run from the command line or from the WebUI.
  • D. First Time Configuration Wizard can be run from the Unified SmartConsole.

Answer: C

Explanation:
Check Point Security Gateway and Check Point Security Management require running the First Time Configuration Wizard in order to be configured correctly. The First Time Configuration Wizard is available in Gaia Portal and also through CLI.
To invoke the First Time Configuration Wizard through CLI, run
the config_system command from the Expert shell.

 

NEW QUESTION 104
Fill in the blank: The __________ is used to obtain identification and security information about network users.

  • A. User server
  • B. User Directory
  • C. UserCheck
  • D. User index

Answer: B

Explanation:
Explanation/Reference:
Reference:
https://www.checkpoint.com/downloads/product-related/datasheets/DS_UserDirectorySWB.pdf

 

NEW QUESTION 105
rd
According to Check Point Best Practice, when adding a 3 party gateway to a Check Point security solution what object SHOULD be added? A(n):

  • A. Gateway
  • B. Externally managed gateway
  • C. Interoperable Device
  • D. Network Node

Answer: C

 

NEW QUESTION 106
What are the three authentication methods for SIC?

  • A. Certificates, Passwords, and Tokens
  • B. Certificates, standards-based SSL for the creation of secure channels, and 3DES or AES128 for encryption
  • C. Passwords, Users, and standards-based SSL for the creation of secure channels
  • D. Packet Filtering, certificates, and 3DES or AES128 for encryption

Answer: B

Explanation:
Explanation
Secure Internal Communication (SIC)
Secure Internal Communication (SIC) lets Check Point platforms and products authenticate with each other.
The SIC procedure creates a trusted status between gateways, management servers and other Check Point components. SIC is required to install polices on gateways and to send logs between gateways and management servers.
These security measures make sure of the safety of SIC:
* Certificates for authentication
* Standards-based SSL for the creation of the secure channel
* 3DES for encryption

 

NEW QUESTION 107
Which of the following are types of VPN communities?

  • A. Combined and star
  • B. Pentagon, star, and combination
  • C. Star, octagon, and combination
  • D. Meshed, star, and combination

Answer: D

 

NEW QUESTION 108
Which back up method uses the command line to create an image of the OS?

  • A. System backup
  • B. Migrate
  • C. snapshot
  • D. Save Configuration

Answer: C

 

NEW QUESTION 109
You installed Security Management Server on a computer using GAiA in the MegaCorp home office. You use
IP address 10.1.1.1. You also installed the Security Gateway on a second GAiA computer, which you plan to
ship to another Administrator at a MegaCorp hub office. What is the correct order for pushing SIC certificates
to the Gateway before shipping it?
1. Run cpconfig on the Gateway, select Secure Internal Communication, enter the activation key, and
reconfirm.
2. Initialize Internal Certificate Authority (ICA) on the Security Management Server.
3. Configure the Gateway object with the host name and IP addresses for the remote site.
4. Click the Communication button in the Gateway object's General screen, enter the activation key, and click
Initialize and OK.
5. Install the Security Policy.

  • A. 2, 3, 4, 1, 5
  • B. 2, 1, 3, 4, 5
  • C. 2, 3, 4, 5, 1
  • D. 1, 3, 2, 4, 5

Answer: B

 

NEW QUESTION 110
Jennifer McHanry is CEO of ACME. She recently bought her own personal iPad. She wants use her iPad to access the internal Finance Web server. Because the iPad is not a member of the Active Directory domain, she cannot identify seamlessly with AD Query.
However, she can enter her AD credentials in the Captive Portal and then get the same access as on her office computer. Her access to resources is based on rules in the R77
Firewall Rule Base.
To make this scenario work, the IT administrator must:
1) Enable Identity Awareness on a gateway and select Captive Portal as one of the Identity
Sources.
2) In the Portal Settings window in the User Access section, make sure that Name and password login is selected.
3) Create a new rule in the Firewall Rule Base to let Jennifer McHanry access network destinations. Select accept as the Action.
4) Install policy.
Ms McHanry tries to access the resource but is unable. What should she do?

  • A. Have the security administrator select the Action field of the Firewall Rule "Redirect
    HTTP connections to an authentication (captive) portal".
  • B. Install the Identity Awareness agent on her iPad.
  • C. Have the security administrator select Any for the Machines tab in the appropriate
    Access Role.
  • D. Have the security administrator reboot the firewall.

Answer: A

 

NEW QUESTION 111
Harriet wants to protect sensitive information from intentional loss when users browse to a specific URL:
https://personal.mymail.com, which blade will she enable to achieve her goal?

  • A. URL Filtering
  • B. DLP
  • C. Application Control
  • D. SSL Inspection

Answer: B

Explanation:
Check Point revolutionizes DLP by combining technology and processes to move businesses from passive detection to active Data Loss Prevention. Innovative MultiSpect data classification combines user, content and process information to make accurate decisions, while UserCheck technology empowers users to remediate incidents in real time. Check Point's self-educating network-based DLP solution frees IT/security personnel from incident handling and educates users on proper data handling policies- protecting sensitive corporate information from both intentional and unintentional loss.
Reference: https://www.checkpoint.com/downloads/product-related/datasheets/DLP-software-blade- datasheet.pdf

 

NEW QUESTION 112
Mesh and Star are two types of VPN topologies. Which statement below is TRUE about these types of
communities?

  • A. A star community requires Check Point gateways, as it is a Check Point proprietary technology.
  • B. In a mesh community, member gateways cannot communicate directly with each other.
  • C. In a mesh community, all members can create a tunnel with any other member.
  • D. In a star community, satellite gateways cannot communicate with each other.

Answer: C

 

NEW QUESTION 113
The following graphic shows:

  • A. View from SmartView Tracker for logs of destination address 10.1.1.202
  • B. View from SmartView Tracker for logs initiated from source address 10.1.1.202
  • C. Viewfrom SmartView Monitor for logs initiated from source address 10.1.1.202
  • D. View from SmartLog for logs initiated from source address 10.1.1.202

Answer: B

 

NEW QUESTION 114
Administrator Kofi has just made some changes on his Management Server and then clicks on the Publish button in SmartConsole but then gets the error message shown in the screenshot below.
Where can the administrator check for more information on these errors?

  • A. The Validations section in SmartConsole
  • B. The Objects section in SmartConsole
  • C. The Log and Monitor section in SmartConsole
  • D. The Policies section in SmartConsole

Answer: A

Explanation:
Explanation
Validation Errors
The validations pane in SmartConsole shows configuration error messages. Examples of errors are object names that are not unique, and the use of objects that are not valid in the Rule Base.
To publish, you must fix the errors.

 

NEW QUESTION 115
On the following graphic, you will find layers of policies.

What is a precedence of traffic inspection for the defined polices?

  • A. A packet arrives at the gateway, it is checked against the rules in the networks policy layer and then if there is any rule which accepts the packet, it comes next to IPS layer and then after accepting the packet it passes to Threat Prevention layer
  • B. A packet arrives at the gateway, it is checked against the rules in the networks policy layer and then if implicit Drop Rule drops the packet, it comes next to IPS layer and then after accepting the packet it passes to Threat Prevention layer.
  • C. A packet arrives at the gateway, it is checked against the rules in IPS policy layer and then it comes next to the Network policy layer and then after accepting the packet it passes to Threat Prevention layer.
  • D. A packet arrives at the gateway, it is checked against the rules in the networks policy layer and then if there is any rule which accepts the packet, it comes next to Threat Prevention layer and then after accepting the packet it passes to IPS layer.

Answer: A

Explanation:
Explanation
To simplify Policy management, R80 organizes the policy into Policy Layers. A layer is a set of rules, or a Rule Base.
For example, when you upgrade to R80 from earlier versions:
* Gateways that have the Firewall and the Application Control Software Blades enabled will have their Access Control Policy split into two ordered layers: Network and Applications.
When the gateway matches a rule in a layer, it starts to evaluate the rules in the next layer.
* Gateways that have the IPS and Threat Emulation Software Blades enabled will have their Threat Prevention policies split into two parallel layers: IPS and Threat Prevention.
All layers are evaluated in parallel
When the gateway matches a rule in a layer, it starts to evaluate the rules in the next layer.
All layers are evaluated in parallel

 

NEW QUESTION 116
Which authentication scheme requires a user to possess a token?

  • A. SecurID
  • B. TACACS
  • C. Check Point password
  • D. RADIUS

Answer: A

Explanation:
Explanation
SecurID
SecurID requires users to both possess a token authenticator and to supply a PIN or password

 

NEW QUESTION 117
......

CCSA R80 -156-215.80 Exam-Practice-Dumps: https://www.free4dump.com/156-215.80-braindumps-torrent.html

Related Articles

more
CheckPoint 156-215.80 Certification Practice Exam