156-115.77 Online Practice Questions and Answers
The fw tab t ___________ command displays the NAT table.
A. loglist
B. tablist
C. fwx_alloc
D. conns
While troubleshooting a connectivity issue with an internal web server, you know that packets are getting to the upstream router, but when you run a tcpdump on the external interface of the gateway, the only traffic you observe is ARP requests coming from the upstream router. Does the problem lie on the Check Point Gateway?
A. Yes This could be due to a misconfigured route on the firewall.
B. No This is a layer 2 connectivity issue and has nothing to do with the firewall.
C. No The firewall is not dropping the traffic, therefore the problem does not lie with the firewall.
D. Yes This could be due to a misconfigured Static NAT in the firewall policy.
Which is NOT a valid upgrade method in an R77 GAiA ClusterXL deployment?
A. Optimal Service Upgrade
B. Full Connectivity Upgrade
C. Minimal Effort Upgrade
D. Automatic Incremental Upgrade
While troubleshooting high CPU usage on cores 3 and 4 on a cluster, you notice the following output of fwaccel stats -s:
What could be a possible cause of the high CPU usage?
A. Connections are being partially accelerated by SecureXL, but too many packets are still being processed by the firewall kernel.
B. The Secure Network Dispatcher (SND) is having to process too much inbound traffic from the NICs.
C. Connections are not being accelerated by SecureXL, and all packets are being forwarded to firewall kernel instances for inspection.
D. The Secure Network Dispatcher (SND) is working too hard to distribute the traffic to the acceleration layer.
You are finding that some users are complaining about slow connection speed. You would like to review a summary of your connections, including which connections are accelerated and those that are not. What command could you use?
A. fw ctl pstat
B. fwaccel perf
C. fw tab -t connections -s
D. fwaccel stats -s
What does "cphwd_nat_templates_enabled=1" do when entered into fwkern.conf?
A. Disables NAT templates when SecureXL is turned on.
B. Enables NAT templates when SecureXL is turned on.
C. Enables NAT templates at all times.
D. Disables NAT templates at all times.
What is the best way to see how a firewall is performing while processing packets in the firewall path, including resource usage?
A. fw getperf
B. SecureXL stat
C. fwaccel stats
D. fw ctl pstat
In IPS which of the two initial profiles is the more resource intensive?
A. Prevention
B. Standard
C. Default
D. Recommended
Which of these commands can be used to display the IPv6 routes?
A. show route
B. show ipv6 route
C. show routes all
D. show route ipv6
What type(s) of VTI interfaces do Edge gateways support?
A. Both numbered and unnumbered
B. Unnumbered interfaces
C. Numbered interfaces
D. Neither numbered and unnumbered
What Makes leads4pass.com Differ From Others?
There are tens of thousands of certification exam dumps provided on the internet. To keep the exam dumps valid, the exam questions latest and the exam answers accurate should be the first aim. Also, to make the exam PDF and exam VCE simulator easy to use is very important. Besides, leads4pass.com has 100% pass guarantee policy. Free exam demo is available. Customer support team is ready to help at any time when required.
All rights are reserved by leads4pass.com. Any changes, copy or trademarks abuse will be regarded as infringement. leads4pass.com will reserve the right to pursue accountability.
Copyright © 2004-2024 leads4pass.com.