NEW QUESTION 1
What is the valid range for VRID value in VRRP configuration?

• A. 1 - 254
• B. 1 - 255
• C. 0 - 254
• D. 0 - 255

Answer: B

Explanation:
Virtual Router ID - Enter a unique ID number for this virtual router. The range of valid values is 1 to 255. \

NEW QUESTION 2
Pamela is Cyber Security Engineer working for Global Instance Firm with large scale deployment of Check Point Enterprise Appliances using GAiA/R80.10. Company’s Developer Team is having random access issue to newly deployed Application Server in DMZ’s Application Server Farm Tier and blames DMZ Security Gateway as root cause. The ticket has been created and issue is at Pamela’s desk for an investigation. Pamela decides to use Check Point’s Packet Analyzer Tool-fw monitor to iron out the issue during approved Maintenance window.
What do you recommend as the best suggestion for Pamela to make sure she successfully captures entire traffic in context of Firewall and problematic traffic?

• A. Pamela should check SecureXL status on DMZ Security gateway and if it’s turned O
• B. She should turn OFF SecureXL before using fw monitor to avoid misleading traffic captures.
• C. Pamela should check SecureXL status on DMZ Security Gateway and if it’s turned OF
• D. She should turn ON SecureXL before using fw monitor to avoid misleading traffic captures.
• E. Pamela should use tcpdump over fw monitor tool as tcpdump works at OS-level and captures entire traffic.
• F. Pamela should use snoop over fw monitor tool as snoop works at NIC driver level and captures entire traffic.

Answer: A

NEW QUESTION 3
What is the SandBlast Agent designed to do?

• A. Performs OS-level sandboxing for SandBlast Cloud architecture
• B. Ensure the Check Point SandBlast services is running on the end user’s system
• C. If malware enters an end user’s system, the SandBlast Agent prevents the malware from spreading with the network
• D. Clean up email sent with malicious attachments

Answer: C

NEW QUESTION 4
GAiA Software update packages can be imported and installed offline in situation where:

• A. Security Gateway with GAiA does NOT have SFTP access to Internet
• B. Security Gateway with GAiA does NOT have access to Internet.
• C. Security Gateway with GAiA does NOT have SSH access to Internet.
• D. The desired CPUSE package is ONLY available in the Check Point CLOUD.

Answer: B

NEW QUESTION 5
In SmartEvent, what are the different types of automatic reactions that the administrator can configure?

• A. Mail, Block Source, Block Event Activity, External Script, SNMP Trap
• B. Mail, Block Source, Block Destination, Block Services, SNMP Trap
• C. Mail, Block Source, Block Destination, External Script, SNMP Trap
• D. Mail, Block Source, Block Event Activity, Packet Capture, SNMP Trap

Answer: A

NEW QUESTION 6
An administrator would like to troubleshoot why templating is not working for some traffic. How can he determine at which rule templating is disabled?

• A. He can use the fw accel stat command on the gateway.
• B. He can use the fw accel statistics command on the gateway.
• C. He can use the fwaccel stat command on the Security Management Server.
• D. He can use the fwaccel stat command on the gateway

Answer: D

NEW QUESTION 7
You need to change the MAC-address on eth2 interface of the gateway. What command and what mode will you use to achieve this goal?

• A. set interface eth2 mac-addr 11:11:11:11:11:11; CLISH
• B. ifconfig eth1 hw 11:11:11:11:11:11; expert
• C. set interface eth2 hw-addr 11:11:11:11:11:11; CLISH
• D. ethtool -i eth2 mac 11:11:11:11:11:11; expert

Answer: A

NEW QUESTION 8
Fill in the blank: A new license should be generated and installed in all of the following situations EXCEPT when _______ .

• A. The license is attached to the wrong Security Gateway.
• B. The existing license expires.
• C. The license is upgraded.
• D. The IP address of the Security Management or Security Gateway has changed.

Answer: A

NEW QUESTION 9
What is a best practice before starting to troubleshoot using the “fw monitor” tool?

• A. Run the command: fw monitor debug on
• B. Clear the connections table
• C. Disable CoreXL
• D. Disable SecureXL

Answer: D

NEW QUESTION 10
In which VPN community is a satellite VPN gateway not allowed to create a VPN tunnel with another satellite VPN gateway?

• A. Pentagon
• B. Combined
• C. Meshed
• D. Star

Answer: D

NEW QUESTION 11
SandBlast agent extends 0 day prevention to what part of the network?

• A. Web Browsers and user devices
• B. DMZ server
• C. Cloud
• D. Email servers

Answer: A

NEW QUESTION 12
Which of the following is a task of the CPD process?

• A. Invoke and monitor critical processes and attempts to restart them if they fail
• B. Transfers messages between Firewall processes
• C. Log forwarding
• D. Responsible for processing most traffic on a security gateway

Answer: A

Explanation:
https://sc1.checkpoint.com/documents/R76/CP_R76_CLI_WebAdmin/12496.htm

NEW QUESTION 13
For Management High Availability, which of the following is NOT a valid synchronization status?

• A. Collision
• B. Down
• C. Lagging
• D. Never been synchronized

Answer: B

NEW QUESTION 14
Which component is NOT required to communicate with the Web Services API?

• A. API key
• B. session ID token
• C. content-type
• D. Request payload

Answer: A

NEW QUESTION 15
Which encryption algorithm is the least secured?

• A. AES-128
• B. AES-256
• C. DES
• D. 3DES

Answer: C

NEW QUESTION 16
What is considered Hybrid Emulation Mode?

• A. Manual configuration of file types on emulation location.
• B. Load sharing of emulation between an on premise appliance and the cloud.
• C. Load sharing between OS behavior and CPU Level emulation.
• D. High availability between the local SandBlast appliance and the cloud.

Answer: B

NEW QUESTION 17
SandBlast appliances can be deployed in the following modes:

• A. using a SPAN port to receive a copy of the traffic only
• B. detect only
• C. inline/prevent or detect
• D. as a Mail Transfer Agent and as part of the traffic flow only

Answer: C

NEW QUESTION 18
Which of the following describes how Threat Extraction functions?

• A. Detect threats and provides a detailed report of discovered threats.
• B. Proactively detects threats.
• C. Delivers file with original content.
• D. Delivers PDF versions of original files with active content removed.

Answer: B

NEW QUESTION 19
......