Download Checkpoint.156-915.80.PassIt4Sure.2019-01-24.80q.vcex

Download Exam

File Info

Exam CCSE Update R80
Number 156-915.80
File Name Checkpoint.156-915.80.PassIt4Sure.2019-01-24.80q.vcex
Size 62 KB
Posted Jan 24, 2019
Download Checkpoint.156-915.80.PassIt4Sure.2019-01-24.80q.vcex

How to open VCEX & EXAM Files?

Files with VCEX & EXAM extensions can be opened by ProfExam Simulator.

Download
ProfExam Simulator

Purchase

Coupon: MASTEREXAM
With discount: 20%



Exam Hub discount


Demo Questions

Question 1

What is a feature that enables VPN connections to successfully maintain a private and secure VPN session without employing Stateful Inspection?


  1. Stateful Mode
  2. VPN Routing Mode
  3. Wire Mode
  4. Stateless Mode
Correct answer: C
Explanation:
Wire Mode is a VPN-1 NGX feature that enables VPN connections to successfully fail over, bypassing Security Gateway enforcement. This improves performance and reduces downtime. Based on a trusted source and destination, Wire Mode uses internal interfaces and VPN Communities to maintain a private and secure VPN session, without employing Stateful Inspection. Since Stateful Inspection no longer takes place, dynamic-routing protocols that do not survive state verification in non-Wire Mode configurations can now be deployed. The VPN connection is no different from any other connections along a dedicated wire, thus the meaning of "Wire Mode". Reference: https://supportcenter.checkpoint.com/supportcenter/portal?eventSubmit_doGoviewsolutiondetails=&solutionid=sk30974
Wire Mode is a VPN-1 NGX feature that enables VPN connections to successfully fail over, bypassing Security Gateway enforcement. This improves performance and reduces downtime. Based on a trusted source and destination, Wire Mode uses internal interfaces and VPN Communities to maintain a private and secure VPN session, without employing Stateful Inspection. Since Stateful Inspection no longer takes place, dynamic-routing protocols that do not survive state verification in non-Wire Mode configurations can now be deployed. The VPN connection is no different from any other connections along a dedicated wire, thus the meaning of "Wire Mode". 
Reference: https://supportcenter.checkpoint.com/supportcenter/portal?eventSubmit_doGoviewsolutiondetails=&solutionid=sk30974



Question 2

On R80.10 the IPS Blade is managed by:


  1. Threat Protection policy
  2. Anti-Bot Blade
  3. Threat Prevention policy
  4. Layers on Firewall policy
Correct answer: A
Explanation:
Reference: https://www.checkpoint.com/downloads/product-related/r80.10-mgmt-architecture-overview.pdf very top of last page.
Reference: https://www.checkpoint.com/downloads/product-related/r80.10-mgmt-architecture-overview.pdf very top of last page.



Question 3

Which packet info is ignored with Session Rate Acceleration?


  1. source port ranges
  2. source ip
  3. source port
  4. same info from Packet Acceleration is used
Correct answer: C
Explanation:
Reference: http://trlj.blogspot.com/2015/10/check-point-acceleration.html
Reference: http://trlj.blogspot.com/2015/10/check-point-acceleration.html



Question 4

What is the purpose of Priority Delta in VRRP?


  1. When a box is up, Effective Priority = Priority + Priority Delta
  2. When an Interface is up, Effective Priority = Priority + Priority Delta
  3. When an Interface fail, Effective Priority = Priority – Priority Delta
  4. When a box fail, Effective Priority = Priority – Priority Delta
Correct answer: C
Explanation:
Each instance of VRRP running on a supported interface may monitor the link state of other interfaces. The monitored interfaces do not have to be running VRRP. If a monitored interface loses its link state, then VRRP will decrement its priority over a VRID by the specified delta value and then will send out a new VRRP HELLO packet. If the new effective priority is less than the priority a backup platform has, then the backup platform will beging to send out its own HELLO packet. Once the master sees this packet with a priority greater than its own, then it releases the VIP. Reference: https://supportcenter.checkpoint.com/supportcenter/portal?eventSubmit_doGoviewsolutiondetails=&solutionid=sk38524
Each instance of VRRP running on a supported interface may monitor the link state of other interfaces. The monitored interfaces do not have to be running VRRP. If a monitored interface loses its link state, then VRRP will decrement its priority over a VRID by the specified delta value and then will send out a new VRRP HELLO packet. If the new effective priority is less than the priority a backup platform has, then the backup platform will beging to send out its own HELLO packet. Once the master sees this packet with a priority greater than its own, then it releases the VIP. 
Reference: https://supportcenter.checkpoint.com/supportcenter/portal?eventSubmit_doGoviewsolutiondetails=&solutionid=sk38524



Question 5

What is the purpose of a SmartEvent Correlation Unit?


  1. The SmartEvent Correlation Unit is designed to check the connection reliability from SmartConsole to the SmartEvent Server
  2. The SmartEvent Correlation Unit’s task it to assign severity levels to the identified events.
  3. The Correlation unit role is to evaluate logs from the log server component to identify patterns/threats and convert them to events.
  4. The SmartEvent Correlation Unit is designed to check the availability of the SmartReporter Server
Correct answer: C



Question 6

The CDT utility supports which of the following?


  1. Major version upgrades to R77.30
  2. Only Jumbo HFA’s and hotfixes
  3. Only major version upgrades to R80.10
  4. All upgrades
Correct answer: D
Explanation:
The Central Deployment Tool (CDT) is a utility that runs on an R77 / R77.X / R80 / R80.10 Security Management Server / Multi-Domain Security Management Server (running Gaia OS). It allows the administrator to automatically install CPUSE Offline packages (Hotfixes, Jumbo Hotfix Accumulators (Bundles), Upgrade to a Minor Version, Upgrade to a Major Version) on multiple managed Security Gateways and Cluster Members at the same time. Reference: https://community.checkpoint.com/thread/5319-my-top-3-check-point-cli-commands
The Central Deployment Tool (CDT) is a utility that runs on an R77 / R77.X / R80 / R80.10 Security Management Server / Multi-Domain Security Management Server (running Gaia OS). 
It allows the administrator to automatically install CPUSE Offline packages (Hotfixes, Jumbo Hotfix Accumulators (Bundles), Upgrade to a Minor Version, Upgrade to a Major Version) on multiple managed Security Gateways and Cluster Members at the same time. 
Reference: https://community.checkpoint.com/thread/5319-my-top-3-check-point-cli-commands



Question 7

The Firewall kernel is replicated multiple times, therefore:


  1. The Firewall kernel only touches the packet if the connection is accelerated
  2. The Firewall can run different policies per core
  3. The Firewall kernel is replicated only with new connections and deletes itself once the connection times out
  4. The Firewall can run the same policy on all cores
Correct answer: D
Explanation:
On a Security Gateway with CoreXL enabled, the Firewall kernel is replicated multiple times. Each replicated copy, or instance, runs on one processing core. These instances handle traffic concurrently, and each instance is a complete and independent inspection kernel. When CoreXL is enabled, all the kernel instances in the Security Gateway process traffic through the same interfaces and apply the same security policy. Reference: https://sc1.checkpoint.com/documents/R77/CP_R77_PerformanceTuning_WebAdmin/6731.htm
On a Security Gateway with CoreXL enabled, the Firewall kernel is replicated multiple times. Each replicated copy, or instance, runs on one processing core. These instances handle traffic concurrently, and each instance is a complete and independent inspection kernel. When CoreXL is enabled, all the kernel instances in the Security Gateway process traffic through the same interfaces and apply the same security policy. 
Reference: https://sc1.checkpoint.com/documents/R77/CP_R77_PerformanceTuning_WebAdmin/6731.htm



Question 8

Sticky Decision Function (SDF) is required to prevent which of the following? Assume you set up an Active-Active cluster.


  1. Symmetric routing
  2. Failovers
  3. Asymmetric routing
  4. Anti-Spoofing
Correct answer: C



Question 9

Which is not a blade option when configuring SmartEvent?


  1. Correlation Unit
  2. SmartEvent Unit
  3. SmartEvent Server
  4. Log Server
Correct answer: B
Explanation:
On the Management tab, enable these Software Blades:Logging & Status SmartEvent Server SmartEvent Correlation Unit Reference: https://sc1.checkpoint.com/documents/R80/CP_R80_LoggingAndMonitoring/html_frameset.htm?topic=documents/R80/CP_R80_LoggingAndMonitoring/120829
On the Management tab, enable these Software Blades:
  • Logging & Status 
  • SmartEvent Server 
  • SmartEvent Correlation Unit 
Reference: https://sc1.checkpoint.com/documents/R80/CP_R80_LoggingAndMonitoring/html_frameset.htm?topic=documents/R80/CP_R80_LoggingAndMonitoring/120829



Question 10

What command would show the API server status?


  1. cpm status
  2. api restart
  3. api status
  4. show api status
Correct answer: C
Explanation:
Reference: https://www.hurricanelabs.com/blog/check-point-api-merging-management-servers-with-r80-10
Reference: https://www.hurricanelabs.com/blog/check-point-api-merging-management-servers-with-r80-10









CONNECT US

Facebook

Twitter

PROFEXAM WITH A 20% DISCOUNT

You can buy ProfExam with a 20% discount!

Get Now!


HOW TO OPEN VCEX FILES

Use ProfExam Simulator to open VCEX files