Which of the following commands can be used to remove site-to-site IPSEC Security Associations (SA)?
You are unable to login to SmartDashboard. You log into the management server and run #cpwd_admin list with the following output:
What reason could possibly BEST explain why you are unable to connect to SmartDashboard?
When you upload a package or license to the appropriate repository in SmartUpdate, where is the package or license stored
An administrator is creating an IPsec site-to-site VPN between his corporate office and branch office. Both offices are protected by Check Point Security Gateway managed by the same Security Management Server. While configuring the VPN community to specify the pre-shared secret the administrator found that the check box to enable pre-shared secret is shared and cannot be enabled. Why does it not allow him to specify the pre-shared secret?
Fill in the blanks: VPN gateways authenticate using ___________ and ___________ .
To install a brand new Check Point Cluster, the MegaCorp IT department bought 1 Smart-1 and 2 Security Gateway Appliances to run a cluster. Which type of cluster is it?
Which Check Point software blade provides visibility of users, groups and machines while also providing access control through identity-based policies?
Fill in the blank: Licenses can be added to the License and Contract repository ________ .
Fill in the blank: The IPS policy for pre-R80 gateways is installed during the _______ .
Fill in the blanks: The _________ collects logs and sends them to the _________ .
Fill in the blank: The R80 feature ________ permits blocking specific IP addresses for a specified time period.
Fill in the blank: A new license should be generated and installed in all of the following situations EXCEPT when ________.
You have enabled “Full Log” as a tracking option to a security rule. However, you are still not seeing any data type information. What is the MOST likely reason?
What are the three essential components of the Check Point Security Management Architecture?
With which command can you view the running configuration of Gaia-based system.
Which of the following is NOT an integral part of VPN communication within a network?
Which product correlates logs and detects security threats, providing a centralized display of potential attack patterns from all network devices?
Identify the ports to which the Client Authentication daemon listens on by default?
Which of the following is used to initially create trust between a Gateway and Security Management Server?
Which repositories are installed on the Security Management Server by SmartUpdate?
Examine the sample Rule Base.
What will be the result of a verification of the policy from SmartConsole?
When logging in for the first time to a Security management Server through SmartConsole, a fingerprint is saved to the:
Of all the Check Point components in your network, which one changes most often and should be backed up most frequently?
John is the administrator of a R80 Security Management server managing r R77.30 Check Point Security Gateway. John is currently updating the network objects and amending the rules using SmartConsole. To make John’s changes available to other administrators, and to save the database before installing a policy, what must John do?
You want to verify if there are unsaved changes in GAiA that will be lost with a reboot. What command can be used?
Which option would allow you to make a backup copy of the OS and Check Point configuration, without stopping Check Point processes?
According to Check Point Best Practice, when adding a non-managed Check Point Gateway to a Check Point security solution what object SHOULD be added? A(n):
When using GAiA, it might be necessary to temporarily change the MAC address of the interface eth 0 to 00:0C:29:12:34:56. After restarting the network the old MAC address should be active. How do you configure this change?
You have configured SNX on the Security Gateway. The client connects to the Security Gateway and the user enters the authentication credentials. What must happen after authentication that allows the client to connect to the Security Gateway's VPN domain?
On R80.10 when configuring Third-Party devices to read the logs using the LEA (Log Export API) the default Log Server uses port:
Vanessa is expecting a very important Security Report. The Document should be sent as an attachment via e-mail. An e-mail with Security_report.pdf file was delivered to her e-mail inbox. When she opened the PDF file, she noticed that the file is basically empty and only few lines of text are in it. The report is missing some graphs, tables and links. Which component of SandBlast protection is her company using on a Gateway?
You have two rules, ten users, and two user groups in a Security Policy. You create database version 1 for this configuration. You then delete two existing users and add a new user group. You modify one rule and add two new rules to the Rule Base. You save the Security Policy and create database version 2. After a while, you decide to roll back to version 1 to use the Rule Base, but you want to keep your user database. How can you do this?
All R77 Security Servers can perform authentication with the exception of one. Which of the Security Servers can NOT perform authentication?
Which the following type of authentication on Mobile Access can NOT be used as the first authentication method?
You want to establish a VPN, using certificates. Your VPN will exchange certificates with an external partner. Which of the following activities sh you do first?
Which R77 GUI would you use to see number of packets accepted since the last policy install?
In SmartEvent, what are the different types of automatic reactions that the administrator can configure?
Using mgmt_cli, what is the correct syntax to import a host object called Server_1 from the CLI?
What must a Security Administrator do to comply with a management requirement to log all traffic accepted through the perimeter Security Gateway?
In which VPN community is a satellite VPN gateway not allowed to create a VPN tunnel with another satellite VPN gateway?
Fill in the blanks: In the Network policy layer, the default action for the Implied last rule is ________ all traffic. However, in the Application Control policy layer, the default action is ________ all traffic.
Mesh and Star are two types of VPN topologies. Which statement below is TRUE about these types of communities?
Fill in the blank: Once a license is activated, a ________ should be installed.
Provide very wide coverage for all products and protocols, with noticeable performance impact.
How could you tune the profile in order to lower the CPU load still maintaining security at good level? Select the BEST answer.
Fill in the blanks: A security Policy is created in _________ , stored in the _________ , and Distributed to the various __________ .
DumpsMate's team of experts is always available to respond your queries on exam preparation. Get professional answers on any topic of the certification syllabus. Our experts will thoroughly satisfy you.
TESTED 26 Apr 2024
