Valid 156-115.80 Exam Q&A PDF 156-115.80 Dump is Ready (Updated 160 Questions)
Exam Questions and Answers for 156-115.80 Study Guide
NEW QUESTION 91
URL Filtering is an essential part of Web Security in the Gateway. For the Security Gateway to perform a URL lookup when a client makes a URL request, where is the sync-request forwarded from if a sync-request is required?
- A. RAD Kernel Space
- B. URLF Kernel Client
- C. URLF Online Service
- D. RAD User Space
Answer: C
NEW QUESTION 92
Fill in the blank. The toolgenerates a R80 Security Gateway configuration report.
- A. infoCP
- B. infoview
- C. cpinfo
- D. fw cpinfo
Answer: C
NEW QUESTION 93
What does the command "vpn shell tunnels delete all ike" do?
- A. Delete only outbound_SPI tables
- B. Deletes all IKE SA's
- C. Deletes all IKE configuration on the Gateway
- D. Deletes all IKE and IPSEC SA's
Answer: B
NEW QUESTION 94
Which daemon would you debug if you have issues acquiring identities via identity sharing and identities with other gateways?
- A. pdpd
- B. pepd
- C. iad
- D. wstlsd
Answer: A
Explanation:
Explanation/Reference:
Reference: https://sc1.checkpoint.com/documents/R76/
CP_R76_IdentityAwareness_AdminGuide/66477.htm
NEW QUESTION 95
Which command would you use to check CoreXL instances for IPv6 traffic?
- A. fwaccel6 stat
- B. fw6ctl multik stat
- C. fwaccel6 stats
- D. fw ctl multik stat
Answer: D
NEW QUESTION 96
Fill in the blank: The R80 feature _________________ permits blocking specific IP addresses for a specified time period.
- A. Local Interface Spoofing
- B. Adaptive Threat Prevention
- C. Suspicious Activity Monitoring
- D. Block Port Overflow
Answer: C
NEW QUESTION 97
Consider and IKE debug file that has been generated when debugging an issue with site to site VPN. What is the purpose of a NONCE?
- A. Vendor ID and Remote Gateway ID
- B. Protocol 50 and 51 representations
- C. Fixed hex value of Phase 2 keys with PFS
- D. Randomly generated part of key generation
Answer: D
NEW QUESTION 98
John works for ABC Corporation. They have enabled CoreXL on their firewall. John would like to identify the cores on which the SND runs and the cores on which the firewall instance is running. Which command should John run to view the CPU role allocation?
- A. fw ctl affinity -l
- B. fwaccel stat -l
- C. fw ctl cores
- D. fw ctl affinity -v
Answer: A
NEW QUESTION 99
Which of the following is NOT a feature of Cluster XL?
- A. Zero downtime for mession-critical environments with State Synchronization
- B. Transparent failover in case of device failovers
- C. Transparent upgrades
- D. Enhanced throughput in all Cluster XL modes (2 gateway cluster compared with 1 gateway)
Answer: D
NEW QUESTION 100
How can you ensure that a particular service does not use the cluster IP address?
- A. Add the corresponding service port and IP protocol number into the
"no_hide_services_ports" section of the table .def file - B. Add the corresponding service port and IP protocol number into the
"no_hide_services_ports" section of the user.def file - C. Add the corresponding service port and IP protocol number into the
"hide_services_ports" section of the table .def file - D. Add the corresponding service port and IP protocol number into the
"hide_services_ports" section of the user.def file
Answer: A
NEW QUESTION 101
Consider IPv4 header. How does the Security Gateway handle an IP packet that has bits set in its option type field?
- A. Accept TCP/UDP packet with IP options
- B. Modifies TCP/UDP packet with IP options automatically
- C. Drop TCP/UDP packet with IP options
- D. Uses PSL mechanism to pad the IP Options field
Answer: C
NEW QUESTION 102
What is the shorthand reference for a classification object?
- A. Classobj
- B. COBJ
- C. Class.obj
- D. CLOB
Answer: D
Explanation:
Reference:
https://supportcenter.checkpoint.com/supportcenter/portal?eventSubmit_doGoviewsolution details=&solutionid=sk120964
NEW QUESTION 103
In R80 spoofing is defined as a method of:
- A. Desguising an illegal IP address behind an authorized Ip address through Port Address Translation.
- B. Hiding your firewall from unauthorized users.
- C. Detecting people using false or wrong authentication logins.
- D. Making packets appear as if they come from an authorized IP address.
Answer: C
NEW QUESTION 104
Which of the following is not one of the relational database domains that stores the management configuration?
- A. System Domain
- B. User Domain
- C. Audit Domain
- D. Global Domain
Answer: C
NEW QUESTION 105
Regarding the Database Domains, which of the following best describes the System Domain?
- A. This domain is used as the Global database for MDSM and contains global objects and policies.
- B. The database that contains administrator data, folders, domains, trusted GUI clients, permissions profiles, and management settings.
- C. The database stores user-modified configurations, such as network objects and security policies. In a Multi Domain environment, each domain contains a separate User Domain type.
- D. The database contains configuration data of log servers and saved queries for applications.
Answer: B
NEW QUESTION 106
What is enabled by the command "vpn debug mon"?
- A. vpn daemon monitor mode
- B. vpn debug mode
- C. statistics monitoring for vpn encrypted packets
- D. ike monitor
Answer: D
NEW QUESTION 107
Which command is used to enable Ipv6 on Security Gateway?
- A. Set ipv6-state enabled
- B. Add ipv6 interface on
- C. Set ipv6-enable on
- D. Set ipv6 state on
Answer: D
NEW QUESTION 108
You suspect that IPS protections may be dropping legitimate traffic by mistake. To reduce the false positives, what GuiDBedit parameter could you enable to work with fw ctl zdebug drop to generate a more elaborate drop message for these packets?
- A. enable_inspect_debug_ips_compilation
- B. enable_inspect_debug_ips
- C. enable_inspect_debug_compilation
- D. inspect_ips_debug_inspection
Answer: C
NEW QUESTION 109
Which one of following commands should you run to display HTTPS packet content together with kernel debug?
- A. fw ctl get int https_inspection_show_decrypted_data_in_debug=1
fw ctl get int ssl_inspection_extra_debug=1 - B. fw ctl set int https_inspection_show_decrypted_data_in_debug 1
fw ctl set int ssl_inspection_extra_debug 1 - C. fw set int https_inspection_get_encrypted_data_in_debug 1
fw set int https_inspection_show_debug 1 - D. fw ctl set int http_inspection_display_encrypted_data_in_debug=1
fw ctl set int http_inspection_extra_debug=1
Answer: B
NEW QUESTION 110
What is the command to check the current status of hyper-threading?
- A. cat/proc/hyperstats
- B. fw ctl get int cphwd_hyper_status
- C. fw ctl multik stat
- D. cat/proc/smt_status
Answer: D
NEW QUESTION 111
Consider a Check Point Security Gateway under high load. What mechanism can be used to confirm that important traffic such as control connnections are not dropped?
- A. fgate -d load
- B. fw debug fgd 50 on OPSEC_DEBUG_LEVEL
- C. fw ctl debug -m fg all
- D. fw ctl multik priod
Answer: D
NEW QUESTION 112
What is the default setting and setting a minimum value of the Sync tick timer?
- A. 500ms
- B. 1000 ms
- C. 100 ms
- D. 1500 ms
Answer: C
NEW QUESTION 113
A Firewall administrator is attempting to push a policy to a new Security Gateway for a remote office but the installation fails. The Management Server IP is 10.1.1.101. Initial troubleshooting shows that policy is successfully transferred to the Gateway. What command would you use to attempt to identify the cause of the issue?
- A. fw fetchlocal -d $FWDIR/state/_tmp/FW1
- B. cp_merge export_policy -s 10.1.1.101 -n Standard $var/log/
- C. fw ctl debug -m 10.1.1.101
- D. fw ctl debug -T -f > /var/log/p_debug.txt
Answer: B
NEW QUESTION 114
Which Check Point daemon, if it stops responding or goes down, results in connections form the SmartConsole to the Management Sever failing?
- A. CPM
- B. CPTA
- C. SMSD
- D. FWD
Answer: C
NEW QUESTION 115
......
Certification dumps - CCSM 156-115.80 guides - 100% valid: https://www.lead2passexam.com/CheckPoint/valid-156-115.80-exam-dumps.html