Check Point Certified Security Administrator R71

  • Published on
    05-Mar-2016

  • View
    214

  • Download
    1

DESCRIPTION

Questions & Answers: 10 Check Point Certified Security Administrator R71 http://www.examcertify.com/156-215.71.html Click the link below to buy full version as Low as $39

Transcript

  • 156-215.71Check point

    Click the link below to buy full version as Low as $39

    http://www.examcertify.com/156-215.71.html

    Check Point Certified Security Administrator R71

    Questions & Answers: 10

  • http://www.examcertify.com/156-215.71.html Page 2

    Question: 1 A Web server behind the Security Gateway is Automatic NAT Cli ent side NAT is enabled in the Global Properties. A client on the Internet initiates a session to the Web Server. On the initiating packet, NAT occurs on which inspection point? A. O B. o C. I

    Answer: B

    Question: 2 Which of the following is NOT supported with office mode? A. Transparent mode B. L2TP C. Secure Client D. SSL Network Extender

    Answer: A

    Question: 3 You have blocked an IP address via the Block Intruder feature of Smart View Tracker How can you view the blocked addresses? A. Run f wm blockedview B. In Smart View Monitor, Select the Blocked Intruder option from the query tree view C. In Smart View Monitor, select Suspicious Activity Rules from the Tools menu and select the relevant Security Gateway from the List D. In Smart View Tracker, click the Active tab. and the actively blocked connections displays

    Answer: C

  • http://www.examcertify.com/156-215.71.html Page 3

    Question: 4 You are creating an output file with the following command: Fw monitor eaccept(arc=10. 20. 30. 40 or dst=10, 20, 30,-40) : o~/output Which tools do you use to analyze this file? A. You can analyze it with Wireshark or Ethereal B. You can analyze the output file with any ASCI editor. C.The output file format is CSV. so you can use MS Excel to analyze it D. You cannot analyze it with any tool as the syntax should be: fw monitor e accept ([12,b] = 10.20.30.40 or [16,b] = 10.20.30.40);-0~/output

    Answer: A

    Question: 5 You find a suspicious FTP connection trying to connect to one of your internal hosts. How do you block it m real time and verify it is successfully blocked? A. Highlight the suspicious connection in Smart View Tracker>Active mode. Block it using Tools>Block Intruder menu. observe in the Active mode that the suspicious connection is listed in this Smart View Tracker view as dropped B. Highlight the suspicious connection in Smart View Tracker>Active mode. Block it using Tools>Block Intruder menu. observe in the Active mode that the suspicious connection does not appear again in this Smart View Tracker view. C. Highlight the suspicious connection in Smart View Tracker>Log mode. Block it using Tools>Block Intruder menu. observe in the Log mode that the suspicious connection does not appear again in this Smart View Tracker view. D. Highlight the suspicious connection in Smart View Tracker>Log mode. Block it using Tools>Block Intruder menu. observe in the Log mode that the suspicious connection is listed in this Smart View Tracker view as dropped.

    Answer: B

  • http://www.examcertify.com/156-215.71.html Page 4

    Question: 6 What is a Consolidation Policy? A. The collective name of the Security Policy,Address Translation, and IPS Policies. B. The specific Policy written in Smart Dashboard to configure which log data is stored in the Smart Reporter database. C. The collective name of the logs generated by Smart Reporter, D. A global Policy used to share a common enforcement policy for multiple Security Gateways.

    Answer: B

    Question: 7 A Security Policy installed by another Security Administrator has blocked all Smart Dashboard connections to the stand-alone installation of R71. Afer running the fw unloadlocal command, you are able to reconnect with Smart Dashboard and view all changes. Which of the following change is the most likely cause of the block? A. A Stealth Rule has been configured for the R71 Gateway. B. The Allow control connections setting in Policy > Global Properties has been unchecked. C. The Security Policy Installed to the Gateway had no rules in it D. The Gateway Object representing your Gateway was configured as an Externally Managed VPN Gateway.

    Answer: B

  • http://www.examcertify.com/156-215.71.html Page 5

    Question: 8 Your Rule Base includes a Client Authentication rule, using partial authentication and standard sign-on for HTTP, Telnet, and FTP services. The rule was working, until this moring. Now users are not ptompted for authentication, and they see error page cannot be displayed in the browser. In Smart View Tracker, you discover the HTTP connection is dropped when the Gateway is the destination. What cased Client Authentication to fail? A. You added a rule below the Client Authentication rule, blocking HTTP from the Internal network. B. You added the Stealth Rule before the Client Authentication rule. C. You disabled R71 Control Connections in Global Properties. D. You enabled Static NAT on the problematic machines.

    Answer: B

    Question: 9 When configuring the network interfaces of a checkpoint Gateway, the direction canbe defined as Internal or external. What is meaning of interface leading to DMZ?

  • http://www.examcertify.com/156-215.71.html Page 6

    A. It defines the DMZ Interface since this information is necessary for Content Control. B. Using restricted Gateways, this option automatically turns off the counting of IP Addresses originating from this interface C. When selecting this option. Ann-Spoofing is configured automatically to this net. D. Activating this option automatically turns this interface to External

    Answer: A

    Question: 10 Study the diaram and answer the question below. What rule would allow access your local net work using FTP service with User Authen tication as a method of authentication?

    A. 5 B. 1 C. 3 D. 2 E. 4

    Answer: D

  • http://www.examcertify.com/156-215.71.html Page 7

    156-215.71Check point

    Click the link below to buy full version as Low as $39

    http://www.examcertify.com/156-215.71.html

    Check point latest tests

    HIT-001 JK0-019 SG0-001 N10-005 SY0-301 JK0-U31 JK0-U11 JK0-702 JK0-018 JK0-017 JK0-013 ISS-001 CAS-001 FC0-201 220-701 220-702

    FC0-GR1 FC0-U41 LX0-102 FC0-TS1

    Check Point Certified Security Administrator R71

Recommended

View more >