Check Point CCSA 156-215.81.20 Dumps (V11.02) for Effective Preparation: 156-215.81.20 Free Dumps (Part 3, Q81-Q120) Are Available for Reading

1. Which configuration element determines which traffic should be encrypted into a VPN tunnel vs. sent in the clear?

2. You have discovered suspicious activity in your network.

What is the BEST immediate action to take?

3. Tom has connected to the Management Server remotely using SmartConsole and is in the process of making some Rule Base changes, when he suddenly loses connectivity. Connectivity is restored shortly afterward.

What will happen to the changes already made?

4. Which GUI tool can be used to view and apply Check Point licenses?

5. How would you determine the software version from the CLI?

6. In R80 Management, apart from using SmartConsole, objects or rules can also be modified using:

7. When connected to the Check Point R80 Management Server using the SmartConsole the first administrator to connect has a lock on:

8. Which is NOT an encryption algorithm that can be used in an IPSEC Security Association (Phase 2)?

9. Fill in the blank: To create policy for traffic to or from a particular location, use the _____________.

10. After trust has been established between the Check Point components, what is TRUE about name and IP-address changes?

11. Which two Identity Awareness commands are used to support identity sharing?

12. True or False: In R80, more than one administrator can login to the Security Management Server with write permission at the same time.

13. Which one of the following is TRUE?

14. Which deployment adds a Security Gateway to an existing environment without changing IP routing?

15. Fill in the blank: An identity server uses a ___________ for user authentication.

16. You can see the following graphic:

What is presented on it?

17. When configuring LDAP User Directory integration, Changes applied to a User Directory template are:

18. Choose what BEST describes the reason why querying logs now is very fast.

19. Check Point ClusterXL Active/Active deployment is used when:

20. Which of the following methods can be used to update the trusted log server regarding the policy and configuration changes performed on the Security Management Server?

21. From the Gaia web interface, which of the following operations CANNOT be performed on a Security Management Server?

22. Which of the following are types of VPN communities?

23. What are the three types of UserCheck messages?

24. What two ordered layers make up the Access Control Policy Layer?

25. Which statement is TRUE of anti-spoofing?

26. Fill in the blank: The position of an implied rule is manipulated in the __________________ window.

27. How can the changes made by an administrator before publishing the session be seen by a superuser administrator?

28. Which Check Point software blade monitors Check Point devices and provides a picture of network and security performance?

29. Your internal networks 10.1.1.0/24, 10.2.2.0/24 and 192.168.0.0/16 are behind the Internet Security Gateway.

Considering that Layer 2 and Layer 3 setup is correct, what are the steps you will need to do in SmartConsole in order to get the connection working?

30. True or False: The destination server for Security Gateway logs depends on a Security Management Server configuration.

31. Consider the Global Properties following settings:

The selected option “Accept Domain Name over UDP (Queries)” means:

32. How is communication between different Check Point components secured in R80? As with all questions, select the best answer.

33. Identify the ports to which the Client Authentication daemon listens on by default?

34. What is the purpose of the CPCA process?

35. The Network Operations Center administrator needs access to Check Point Security devices mostly for troubleshooting purposes. You do not want to give her access to the expert mode, but she still should be able to run tcpdump.

How can you achieve this requirement?

36. After the initial installation on Check Point appliance, you notice that the Management interface and default gateway are incorrect.

Which commands could you use to set the IP to 192.168.80.200/24 and default gateway to 192.168.80.1.

37. What Check Point tool is used to automatically update Check Point products for the Gaia OS?

38. You are the Check Point administrator for Alpha Corp with an R80 Check Point estate. You have received a call by one of the management users stating that they are unable to browse the Internet with their new tablet connected to the company Wireless. The Wireless system goes through the Check Point Gateway.

How do you review the logs to see what the problem may be?

39. What are the advantages of a “shared policy” in R80?

40. To view statistics on detected threats, which Threat Tool would an administrator use?