• Home
  • Articles
  • 156-315.81.20 Certification - Valid Exam Dumps Questions Study Guide! (Updated 615 Questions) [Q50-Q73]

156-315.81.20 Certification - Valid Exam Dumps Questions Study Guide! (Updated 615 Questions) [Q50-Q73]

Share

156-315.81.20 Certification – Valid Exam Dumps Questions Study Guide! (Updated 615 Questions)

156-315.81.20 Dumps are Available for Instant Access using VCE4Plus

NEW QUESTION # 50
Which encryption algorithm is the least secured?

  • A. 3DES
  • B. DES
  • C. AES-128
  • D. AES-256

Answer: B


NEW QUESTION # 51
Connections to the Check Point R81 Web API use what protocol?

  • A. RPC
  • B. SIC
  • C. VPN
  • D. HTTPS

Answer: D


NEW QUESTION # 52
Which Check Point feature enables application scanning and the detection?

  • A. Application Library
  • B. CPApp
  • C. Application Dictionary
  • D. AppWiki

Answer: D


NEW QUESTION # 53
How many layers make up the TCP/IP model?

  • A. 0
  • B. 1
  • C. 2
  • D. 3

Answer: C


NEW QUESTION # 54
What is the purpose of the CPCA process?

  • A. Monitoring the status of processes.
  • B. Communication between GUI clients and the SmartCenter server.
  • C. Generating and modifying certificates.
  • D. Sending and receiving logs.

Answer: C


NEW QUESTION # 55
To add a file to the Threat Prevention Whitelist, what two items are needed?

  • A. MD5 signature and Gateway
  • B. File name and Gateway
  • C. IP address of Management Server and Gateway
  • D. Object Name and MD5 signature

Answer: D


NEW QUESTION # 56
Which Check Point software blade provides Application Security and identity control?

  • A. Data Loss Prevention
  • B. Application Control
  • C. URL Filtering
  • D. Identity Awareness

Answer: B


NEW QUESTION # 57
After verifying that API Server is not running, how can you start the API Server?

  • A. Run command "set api start" in CLISH mode
  • B. Run command "mgmt api start" in CLISH mode
  • C. Run command "mgmt__cli set api start" in Expert mode
  • D. Run command "api start" in Expert mode

Answer: D


NEW QUESTION # 58
You are asked to check the status of several user-mode processes on the management server and gateway.
Which of the following processes can only be seen on a Management Server?

  • A. fwm
  • B. cpwd
  • C. cpd
  • D. fwd

Answer: A


NEW QUESTION # 59
When simulating a problem on ClusterXL cluster with cphaprob -d STOP -s problem -t 0 register, to initiate a failover on an active cluster member, what command allows you remove the problematic state?

  • A. cphaprob -d STOP unregister
  • B. cphaprob unregister STOP
  • C. cphaprob STOP unregister
  • D. cphaprob -d unregister STOP

Answer: A


NEW QUESTION # 60
Which command lists firewall chain?

  • A. fwctl chain
  • B. fw tab -t chainmod
  • C. fw chain module
  • D. fw list chain

Answer: A


NEW QUESTION # 61
What is required for a certificate-based VPN tunnel between two gateways with separate management systems?

  • A. Unique Passwords
  • B. Shared Secret Passwords
  • C. Mutually Trusted Certificate Authorities
  • D. Shared User Certificates

Answer: C


NEW QUESTION # 62
What is not a component of Check Point SandBlast?

  • A. Threat Cloud
  • B. Threat Simulator
  • C. Threat Extraction
  • D. Threat Emulation

Answer: B


NEW QUESTION # 63
What is the command to check the status of Check Point processes?

  • A. cphaprob list
  • B. cptop
  • C. cpwd_admin list
  • D. top

Answer: C


NEW QUESTION # 64
Which of the following is an identity acquisition method that allows a Security Gateway to identify Active Directory users and computers?

  • A. Account Unit Query
  • B. Active Directory Query
  • C. UserCheck
  • D. User Directory Query

Answer: B


NEW QUESTION # 65
What traffic does the Anti-bot feature block?

  • A. Network traffic to hosts that have been identified as infected
  • B. Command and Control traffic from hosts that have been identified as infected
  • C. Command and Control traffic to servers with reputation for hosting malware
  • D. Network traffic that is directed to unknown or malicious servers

Answer: B


NEW QUESTION # 66
The system administrator of a company is trying to find out why acceleration is not working for the traffic. The traffic is allowed according to the rule base and checked for viruses. But it is not accelerated.
What is the most likely reason that the traffic is not accelerated?

  • A. The connection required a Security server.
  • B. Acceleration is not enabled.
  • C. The traffic is originating from the gateway itself.
  • D. There is a virus found. Traffic is still allowed but not accelerated.

Answer: A


NEW QUESTION # 67
Sticky Decision Function (SDF) is required to prevent which of the following? Assume you set up an Active-Active cluster.

  • A. Asymmetric routing
  • B. Failovers
  • C. Anti-Spoofing
  • D. Symmetric routing

Answer: A


NEW QUESTION # 68
Why would an administrator see the message below?

  • A. A new Policy Package created on the Management is going to be installed to the existing Gateway.
  • B. A new Policy Package created on the Gateway and transferred to the Management will be overwritten by the Policy Package currently on the Gateway but can be restored from a periodic backup on the Gateway.
  • C. A new Policy Package created on the Gateway is going to be installed on the existing Management.
  • D. A new Policy Package created on both the Management and Gateway will be deleted and must be backed up first before proceeding.

Answer: A


NEW QUESTION # 69
Fill in the blank: The command ___________________ provides the most complete restoration of a R81 configuration.

  • A. fwm dbimport -p <export file>
  • B. cpinfo -recover
  • C. cpconfig
  • D. upgrade_import

Answer: D


NEW QUESTION # 70
What is the SOLR database for?

  • A. Enables powerful matching capabilities and writes data to the database
  • B. Serves GUI responsible to transfer request to the DLE server
  • C. Used for full text search and enables powerful matching capabilities
  • D. Writes data to the database and full text search

Answer: C


NEW QUESTION # 71
SecureXL is able to accelerate the Connection Rate using templates.
Which attributes are used in the template to identify the connection?

  • A. Source address. Destination address. Source Port, Destination port
  • B. Source address. Destination address. Destination port. Pro^col
  • C. Source address. Destination address. Source Port, Destination port. Protocol
  • D. Source address. Destination address. Destination port

Answer: C


NEW QUESTION # 72
The "Hit count" feature allows tracking the number of connections that each rule matches.
Will the Hit count feature work independently from logging and Track the hits if the Track option is set to "None"?

  • A. Yes it will work independently as long as "analyze all rules" tick box is enabled on the Security Gateway.
  • B. Yes it will work independently because when you enable Hit Count, the SMS collects the data from supported Security Gateways.
  • C. No, it will not work independently because hit count requires all rules to be logged.
  • D. No, it will work independently. Hit Count will be shown only for rules Track option set as Log or alert.

Answer: B


NEW QUESTION # 73
......

CheckPoint 156-315.81.20 Exam Practice Test Questions: https://www.vce4plus.com/CheckPoint/156-315.81.20-valid-vce-dumps.html

156-315.81.20 Dumps 2024 - New CheckPoint 156-315.81.20 Exam Questions: https://drive.google.com/open?id=1sTpLV1lW9gAve8Vc0m6q2yb9o8xKZysT

Related Articles

more
CheckPoint 156-315.81.20 Certification Practice Exam