Check Point CCSE R80 156-315.80 Exam Questions Updated

1. Identify the API that is not supported by Check Point currently.

2. SandBlast Mobile identifies threats in mobile devices by using on-device, network, and cloud-based algorithms and has four dedicated components that constantly work together to protect mobile devices and their data.

Which component is NOT part of the SandBlast Mobile solution?

3. What are the different command sources that allow you to communicate with the API server?

4. What makes Anti-Bot unique compared to other Threat Prevention mechanisms, such as URL Filtering, Anti-Virus, IPS, and Threat Emulation?

5. Which TCP-port does CPM process listen to?

6. Which method below is NOT one of the ways to communicate using the Management API’s?

7. Your manager asked you to check the status of SecureXL, and its enabled templates and features.

What command will you use to provide such information to manager?

8. SSL Network Extender (SNX) is a thin SSL VPN on-demand client that is installed on the remote user’s machine via the web browser.

What are the two modes of SNX?

9. Which command would disable a Cluster Member permanently?

10. Which two of these Check Point Protocols are used by SmartEvent Processes?

11. Fill in the blank: The tool ________ generates a R80 Security Gateway configuration report.

12. Which of these statements describes the Check Point ThreatCloud?

13. Automatic affinity means that if SecureXL is running, the affinity for each interface is automatically reset every

14. Which command will allow you to see the interface status?

15. Which command can you use to enable or disable multi-queue per interface?

16. To help SmartEvent determine whether events originated internally or externally you must define using the Initial Settings under General Settings in the Policy Tab.

How many options are available to calculate the traffic direction?

17. There are 4 ways to use the Management API for creating host object with R80 Management API.

Which one is NOT correct?

18. CoreXL is supported when one of the following features is enabled:

19. You noticed that CPU cores on the Security Gateway are usually 100% utilized and many packets were dropped. You don’t have a budget to perform a hardware upgrade at this time. To optimize drops you decide to use Priority Queues and fully enable Dynamic Dispatcher.

How can you enable them?

20. Check Point Management (cpm) is the main management process in that it provides the architecture for a consolidates management console. CPM allows the GUI client and management server to communicate via web services using ___________.

21. Which command is used to set the CCP protocol to Multicast?

22. Which packet info is ignored with Session Rate Acceleration?

23. Which is the least ideal Synchronization Status for Security Management Server High Availability deployment?

24. During inspection of your Threat Prevention logs you find four different computers having one event each with a Critical Severity.

Which of those hosts should you try to remediate first?

25. In R80 spoofing is defined as a method of:

26. Connections to the Check Point R80 Web API use what protocol?

27. Which command lists all tables in Gaia?

28. What is true about the IPS-Blade?

29. Which one of these features is NOT associated with the Check Point URL Filtering and Application Control Blade?

30. What is a feature that enables VPN connections to successfully maintain a private and secure VPN session without employing Stateful Inspection?

31. What Factor preclude Secure XL Templating?

32. In order to get info about assignment (FW, SND) of all CPUs in your SGW, what is the most accurate CLI command?

33. Check Pont Central Deployment Tool (CDT) communicates with the Security Gateway / Cluster Members over Check Point SIC _____________ .

34. The CPD daemon is a Firewall Kernel Process that does NOT do which of the following?

35. What is not a component of Check Point SandBlast?

36. Full synchronization between cluster members is handled by Firewall Kernel.

Which port is used for this?

37. Fill in the blank: The command ___________ provides the most complete restoration of a R80 configuration.

38. Check Point Management (cpm) is the main management process in that it provides the architecture for a consolidated management console. It empowers the migration from legacy Client-side logic to Server-side logic.

The cpm process:

39. Which of the following type of authentication on Mobile Access can NOT be used as the first authentication method?

40. Which of the SecureXL templates are enabled by default on Security Gateway?

41. What happen when IPS profile is set in Detect Only Mode for troubleshooting?

42. What is true about VRRP implementations?

43. The Security Gateway is installed on GAIA R80. The default port for the Web User Interface is ______.

44. Fill in the blank: The R80 feature ______ permits blocking specific IP addresses for a specified time period.

45. In a Client to Server scenario, which represents that the packet has already checked against the tables and the Rule Base?

46. What is the mechanism behind Threat Extraction?

47. You want to gather and analyze threats to your mobile device. It has to be a lightweight app.

Which application would you use?

48. Which view is NOT a valid CPVIEW view?

49. Which of the following is a new R80.10 Gateway feature that had not been available in R77.X and older?

50. fwssd is a child process of which of the following Check Point daemons?

51. Sticky Decision Function (SDF) is required to prevent which of the following? Assume you set up an Active-Active cluster.

52. CPM process stores objects, policies, users, administrators, licenses and management data in a database.

The database is:

53. If you needed the Multicast MAC address of a cluster, what command would you run?

54. Which is NOT an example of a Check Point API?

55. What are the three components for Check Point Capsule?

56. Which of the following Check Point processes within the Security Management Server is responsible for the receiving of log records from Security Gateway?

57. The fwd process on the Security Gateway sends logs to the fwd process on the Management Server via which 2 processes?

58. You have successfully backed up Check Point configurations without the OS information.

What command would you use to restore this backup?

59. The Firewall Administrator is required to create 100 new host objects with different IP addresses.

What API command can he use in the script to achieve the requirement?

60. Tom has been tasked to install Check Point R80 in a distributed deployment. Before Tom installs the systems this way, how many machines will he need if he does NOT include a SmartConsole machine in his calculations?