NEW QUESTION 1
The Firewall kernel is replicated multiple times, therefore:

• A. The Firewall kernel only touches the packet if the connection is accelerated
• B. The Firewall can run different policies per core
• C. The Firewall kernel is replicated only with new connections and deletes itself once the connection times out
• D. The Firewall can run the same policy on all cores.

Answer: D

Explanation:
On a Security Gateway with CoreXL enabled, the Firewall kernel is replicated multiple times. Each replicated copy, or instance, runs on one processing core. These instances handle traffic concurrently, and each instance is a complete and independent inspection kernel. When CoreXL is enabled, all the kernel instances in the Security Gateway process traffic through the same interfaces and apply the same security policy.

NEW QUESTION 2
To optimize Rule Base efficiency, the most hit rules should be where?

• A. Removed from the Rule Base.
• B. Towards the middle of the Rule Base.
• C. Towards the top of the Rule Base.
• D. Towards the bottom of the Rule Base.

Answer: C

NEW QUESTION 3
What must you do first if “fwm sic_reset” could not be completed?

• A. Cpstop then find keyword “certificate” in objects_5_0.C and delete the section
• B. Reinitialize SIC on the security gateway then run “fw unloadlocal”
• C. Reset SIC from Smart Dashboard
• D. Change internal CA via cpconfig

Answer: D

NEW QUESTION 4
How is communication between different Check Point components secured in R80? As with all questions, select the BEST answer.

• A. By using IPSEC
• B. By using SIC
• C. By using ICA
• D. By using 3DES

Answer: B

NEW QUESTION 5
In the R80 SmartConsole, on which tab are Permissions and Administrators defined?

• A. Security Policies
• B. Logs and Monitor
• C. Manage and Settings
• D. Gateways and Servers

Answer: C

NEW QUESTION 6
Which packet info is ignored with Session Rate Acceleration?

• A. source port ranges
• B. source ip
• C. source port
• D. same info from Packet Acceleration is used

Answer: C

NEW QUESTION 7
How many users can have read/write access in Gaia at one time?

• A. Infinite
• B. One
• C. Three
• D. Two

Answer: B

NEW QUESTION 8
Which software blade does NOT accompany the Threat Prevention policy?

• A. Anti-virus
• B. IPS
• C. Threat Emulation
• D. Application Control and URL Filtering

Answer: D

NEW QUESTION 9
If there are two administration logged in at the same time to the SmartConsole, and there are objects locked for editing, what must be done to make them available or other administrators? (Choose the BEST answer.)

• A. Publish or discard the session.
• B. Revert the session.
• C. Save and install the Policy.
• D. Delete older versions of database.

Answer: A

NEW QUESTION 10
After making modifications to the $CVPNDIR/conf/cvpnd.C file, how would you restart the daemon?

• A. cvpnd_restart
• B. cvpnd_restart
• C. cvpnd restart
• D. cvpnrestart

Answer: B

NEW QUESTION 11
Which of these statements describes the Check Point ThreatCloud?

• A. Blocks or limits usage of web applications
• B. Prevents or controls access to web sites based on category
• C. Prevents Cloud vulnerability exploits
• D. A worldwide collaborative security network

Answer: D

NEW QUESTION 12
What is the default size of NAT table fwx_alloc?

• A. 20000
• B. 35000
• C. 25000
• D. 10000

Answer: C

NEW QUESTION 13
Which of the following type of authentication on Mobile Access can NOT be used as the first authentication method?

• A. Dynamic ID
• B. RADIUS
• C. Username and Password
• D. Certificate

Answer: A

NEW QUESTION 14
What makes Anti-Bot unique compared to other Threat Prevention mechanisms, such as URL Filtering, Anti-Virus, IPS, and Threat Emulation?

• A. Anti-Bot is the only countermeasure against unknown malware
• B. Anti-Bot is the only protection mechanism which starts a counter-attack against known Command & Control Centers
• C. Anti-Bot is the only signature-based method of malware protection.
• D. Anti-Bot is a post-infection malware protection to prevent a host from establishing a connection to a Command & Control Center.

Answer: D

NEW QUESTION 15
You need to see which hotfixes are installed on your gateway, which command would you use?

• A. cpinfo –h all
• B. cpinfo –o hotfix
• C. cpinfo –l hotfix
• D. cpinfo –y all

Answer: D

NEW QUESTION 16
In what way are SSL VPN and IPSec VPN different?

• A. SSL VPN is using HTTPS in addition to IKE, whereas IPSec VPN is clientless
• B. SSL VPN adds an extra VPN header to the packet, IPSec VPN does not
• C. IPSec VPN does not support two factor authentication, SSL VPN does support this
• D. IPSec VPN uses an additional virtual adapter; SSL VPN uses the client network adapter only.

Answer: D

NEW QUESTION 17
Using ClusterXL, what statement is true about the Sticky Decision Function?

• A. Can only be changed for Load Sharing implementations
• B. All connections are processed and synchronized by the pivot
• C. Is configured using cpconfig
• D. Is only relevant when using SecureXL

Answer: A

NEW QUESTION 18
What is not a purpose of the deployment of Check Point API?

• A. Execute an automated script to perform common tasks
• B. Create a customized GUI Client for manipulating the objects database
• C. Create products that use and enhance the Check Point solution
• D. Integrate Check Point products with 3rd party solution

Answer: B

NEW QUESTION 19
......