The Secret Of CheckPoint 156-915.77 Preparation

We provide real 156-915.77 exam questions and answers braindumps in two formats. Download PDF & Practice Tests. Pass CheckPoint 156-915.77 Exam quickly & easily. The 156-915.77 PDF type is available for reading and printing. You can print more and practice many times. With the help of our CheckPoint 156-915.77 dumps pdf and vce product and material, you can easily pass the 156-915.77 exam.

Free 156-915.77 Demo Online For CheckPoint Certifitcation:

NEW QUESTION 1

Which command would provide the most comprehensive diagnostic information to Check Point Technical Support?

  • A. fw cpinfo
  • B. cpinfo -o date.cpinfo.txt
  • C. diag
  • D. cpstat - date.cpstat.txt

Answer: B

NEW QUESTION 2

Match the ClusterXL modes with their configurations. Exhibit:
156-915.77 dumps exhibit

  • A. A-2, B-3, C-4, D-1
  • B. A-2, B-3, C-1, D-5
  • C. A-3, B-5, C-1, D-4
  • D. A-5, B-2, C-4, D-1

Answer: C

NEW QUESTION 3

The third-shift Administrator was updating Security Management Server access settings in Global Properties. He managed to lock all administrators out of their accounts. How should you unlock these accounts?

  • A. Delete the file admin.lock in the Security Management Server directory $FWDIR/tmp/.
  • B. Reinstall the Security Management Server and restore using upgrade_import.
  • C. Type fwm lock_admin -ua from the Security Management Server command line.
  • D. Login to SmartDashboard as the special cpconfig_admin user account; right-click on each administrator object and select unlock.

Answer: C

NEW QUESTION 4

Several Security Policies can be used for different installation targets. The Firewall protecting Human Resources’ servers should have its own Policy Package. These rules must be installed on this machine and not on the Internet Firewall. How can this be accomplished?

  • A. A Rule Base is always installed on all possible target
  • B. The rules to be installed on a Firewall are defined by the selection in the Rule Base row Install On.
  • C. When selecting the correct Firewall in each line of the Rule Base row Install On, only this Firewall is shown in the list of possible installation targets after selecting Policy > Install on Target.
  • D. In the menu of SmartDashboard, go to Policy > Policy Installation Targets and select the correct firewall via Specific Targets.
  • E. A Rule Base can always be installed on any Check Point Firewall objec
  • F. It is necessary to select the appropriate target directly after selecting Policy > Install on Target.

Answer: C

NEW QUESTION 5

Which of the following statements accurately describes the command upgrade_export?

  • A. upgrade_export stores network-configuration data, objects, global properties, and the database revisions prior to upgrading the Security Management Server.
  • B. Used primarily when upgrading the Security Management Server, upgrade_export stores all object databases and the /conf directories for importing to a newer Security Gateway version.
  • C. upgrade_export is used when upgrading the Security Gateway, and allows certain files to be included or excluded before exporting.
  • D. This command is no longer supported in GAiA.

Answer: B

NEW QUESTION 6
Install the Security Policy.


Solution:


Does this meet the goal?
  • A. Yes
  • B. Not Mastered

Answer: A

NEW QUESTION 7

What mechanism does a gateway configured with Identity Awareness and LDAP initially use to communicate with a Windows 2003 or 2008 server?

  • A. WMI
  • B. CIFS
  • C. RCP
  • D. LDAP

Answer: A

NEW QUESTION 8

Use the table to match the BEST Management High Availability synchronication-status descriptions for your Security Management Server (SMS).
Exhibit:
156-915.77 dumps exhibit

  • A. A-5, B-3, C-1, D-2
  • B. A-3, B-1, C-4, D-2
  • C. A-3, B-5, C-2, D-4
  • D. A-3, B-1, C-5, D-4

Answer: D

NEW QUESTION 9

You are troubleshooting a HTTP connection problem. You've started fw monitor -o http.pcap. When you open http.pcap with Wireshark there is only one line. What is the most likely reason?

  • A. fw monitor was restricted to the wrong interface.
  • B. Like SmartView Tracker only the first packet of a connection will be captured by fw monitor.
  • C. By default only SYN pakets are captured.
  • D. Acceleration was turned on and therefore fw monitor sees only SYN.

Answer: D

NEW QUESTION 10

You find that Users are not prompted for authentication when they access their Web servers, even though you have created an HTTP rule via User Authentication. Choose the BEST reason why.

  • A. You checked the cache password on desktop option in Global Properties.
  • B. Another rule that accepts HTTP without authentication exists in the Rule Base.
  • C. You have forgotten to place the User Authentication Rule before the Stealth Rule.
  • D. Users must use the SecuRemote Client, to use the User Authentication Rule.

Answer: B

NEW QUESTION 11

When using GAiA, it might be necessary to temporarily change the MAC address of the interface eth 0 to 00:0C:29:12:34:56. After restarting the network the old MAC address should be active. How do you configure this change?
156-915.77 dumps exhibit

  • A. Option A
  • B. Option B
  • C. Option C
  • D. Option D

Answer: A

NEW QUESTION 12

What gives administrators more flexibility when configuring Captive Portal instead of LDAP
query for Identity Awareness authentication?

  • A. Captive Portal is more secure than standard LDAP
  • B. Nothing, LDAP query is required when configuring Captive Portal
  • C. Captive Portal works with both configured users and guests
  • D. Captive Portal is more transparent to the user

Answer: C

NEW QUESTION 13

When migrating the SmartEvent data base from one server to another, the last step is to save the files on the new server. Which of the following commands should you run to save the SmartEvent data base files on the new server?

  • A. cp
  • B. restore
  • C. migrate import
  • D. eva_db_restore

Answer: D

NEW QUESTION 14

You run cphaprob -a if. When you review the output, you find the word DOWN. What does DOWN mean?

  • A. The cluster link is down.
  • B. The physical interface is administratively set to DOWN.
  • C. The physical interface is down.
  • D. CCP pakets couldn't be sent to or didn't arrive from neighbor member.

Answer: D

NEW QUESTION 15

You are trying to configure Directional VPN Rule Match in the Rule Base. But the Match column does not have the option to see the Directional Match. You see the following window.
156-915.77 dumps exhibit
What must you enable to see the Directional Match?

  • A. directional_match(true) in the objects_5_0.C file on Security Management Server
  • B. VPN Directional Match on the Gateway object’s VPN tab
  • C. VPN Directional Match on the VPN advanced window, in Global Properties
  • D. Advanced Routing on each Security Gateway

Answer: C

NEW QUESTION 16
CORRECT TEXT
Fill in the blank. To enter the router shell, use command .


Solution:
cligated

Does this meet the goal?
  • A. Yes
  • B. Not Mastered

Answer: A

NEW QUESTION 17
......

Thanks for reading the newest 156-915.77 exam dumps! We recommend you to try the PREMIUM Allfreedumps.com 156-915.77 dumps in VCE and PDF here: https://www.allfreedumps.com/156-915.77-dumps.html (203 Q&As Dumps)