Check Point 156-315.80 Check Point Certified Security Expert – R80 Online Training
Check Point 156-315.80 Online Training
The questions for 156-315.80 were last updated at Nov 26,2024.
- Exam Code: 156-315.80
- Exam Name: Check Point Certified Security Expert - R80
- Certification Provider: Check Point
- Latest update: Nov 26,2024
What traffic does the Anti-bot feature block?
- A . Command and Control traffic from hosts that have been identified as infected
- B . Command and Control traffic to servers with reputation for hosting malware
- C . Network traffic that is directed to unknown or malicious servers
- D . Network traffic to hosts that have been identified as infected
Matt wants to upgrade his old Security Management server to R80.x using the Advanced Upgrade with Database Migration .
What is one of the requirements for a successful upgrade?
- A . Size of the /var/log folder of the source machine must be at least 25% of the size of the /var/log directory on the target machine
- B . Size of the /var/log folder of the target machine must be at least 25% of the size of the /var/log directory on the source machine
- C . Size of the $FWDIR/log folder of the target machine must be at least 30% of the size of the $FWDIR/log directory on the source machine
- D . Size of the /var/log folder of the target machine must be at least 25GB or more
On the following picture an administrator configures Identity Awareness:
After clicking “Next” the above configuration is supported by:
- A . Kerberos SSO which will be working for Active Directory integration
- B . Based on Active Directory integration which allows the Security Gateway to correlate Active Directory users and machines to IP addresses in a method that is completely transparent to the user.
- C . Obligatory usage of Captive Portal.
- D . The ports 443 or 80 what will be used by Browser-Based and configured Authentication.
Which of the following is NOT a valid type of SecureXL template?
- A . Accept Template
- B . Deny template
- C . Drop Template
- D . NAT Template
CoreXL is NOT supported when one of the following features is enabled: (Choose three)
- A . Route-based VPN
- B . IPS
- C . IPv6
- D . Overlapping NAT
Which of the following is NOT an alert option?
- A . SNMP
- B . High alert
- C . Mail
- D . User defined alert
What does it mean if Deyra sees the gateway status? (Choose the BEST answer.)
- A . SmartCenter Server cannot reach this Security Gateway.
- B . There is a blade reporting a problem.
- C . VPN software blade is reporting a malfunction.
- D . Security Gateway’s MGNT NIC card is disconnected.
Check Point Management (cpm) is the main management process in that it provides the architecture for a consolidates management console. CPM allows the GUI client and management server to communicate via web services using ___________.
- A . TCP port 19009
- B . TCP Port 18190
- C . TCP Port 18191
- D . TCP Port 18209
How can SmartView application accessed?
- A . http://<Security Management IP Address>/smartview
- B . http://<Security Management IP Address>:4434/smartview/
- C . https://<Security Management IP Address>/smartview/
- D . https://<Security Management host name>:4434/smartview/
What is the SandBlast Agent designed to do?
- A . Performs OS-level sandboxing for SandBlast Cloud architecture
- B . Ensure the Check Point SandBlast services is running on the end user’s system
- C . If malware enters an end user’s system, the SandBlast Agent prevents the malware from spreading with the network
- D . Clean up email sent with malicious attachments
Latest 156-315.80 Dumps Valid Version with 375 Q&As
Latest And Valid Q&A | Instant Download | Once Fail, Full Refund
Answer: fw accel stat = wrong.
fw ctl multik set_mode 9 does not work in R80.10 any more, correct answer is fw ctl multik dynamic_dispatching on for R80 and up.
cphaprob set_ccp multicast = wrong
Which is the *least ideal* Synchronization Status for Security Management Server High Availability deployment? => never been synchronized is the only correct answer. Other statuses are ofcourse not good, too. But Never been Synched is the worst: if something happens to the active SMS, the configuration is lost and you need to go back to backups. (https://supportcenter.checkpoint.com/supportcenter/portal?eventSubmit_doGoviewsolutiondetails=&solutionid=sk54160#1.5)
fw tab Ct = wrong. fw tab -t doesn’t work either. Did you mean fw tab?
fw-tab Cs = wrong. fw-tab is not a known command
fw ctl affinity Cl a Cr Cv = fw ctl affinity -l -a -r -v (instead of C there should be – signs. And the – in front of a was missing).