156-115.80 Online Practice Questions and Answers
What must be done for the "fw monitor" command to capture packets through the firewall kernel?
A. SecureXL must be disabled
B. ClusterXL must be temporarily disabled
C. Firewall policy must be re-installed
D. The output file must be transferred to a machine with WireShark
Consider a Check Point Security Gateway under high load. What mechanism can be used to confirm that important traffic such as control connections are not dropped?
A. fw debug fgd50 on OPSEC_DEBUG_LEVEL=3
B. fw ctl multik prioq
C. fgate –d load
D. fw ctl debug –m fg all
Which process is responsible for the generation of certificates?
A. cpm
B. cpca
C. dbsync
D. fwm
Where do Protocol parsers register themselves for IPS?
A. Passive Streaming Library
B. Other handlers register to Protocol parser
C. Protections database
D. Context Management Infrastructure
How can you print the session UUID and the UUID of a connection together in fw monitor?
A. The switches –s and –u are mutually exclusive and cannot be printed together
B. fw –s monitor –u –e “accept
C. fw monitor –uids –e “accept
D. fw monitor –s –u –e “accept
IPS detection incorporates 4 layers. Which of the following is NOT a layer in IPS detection?
A. Context Management
B. Protocol Parsers
C. Protections
D. Detections
You suspect that IPS protections may be dropping legitimate traffic by mistake. To reduce the false positives, what GuiDBedit parameter could you enable to work with fw ctl zdebug drop to generate a more elaborate drop message for these packets?
A. enable_inspect_debug_ips_compilation
B. inspect_ips_debug_inspection
C. enable_inspect_debug_compilation
D. enable_inspect_debug_ips
When an object is created via SmartConsole or the API server, a command is sent to which process?
A. To the CPM process
B. To the CPD process
C. To the FWD process
D. To the FWM process
Vanessa wants to configure CoreXL on an Open server. The server has a single four core CPU with 16GB of RAM and the Performance Pack is running. Which command should Vanessa use to change assigned CPUs to interface eth1?
A. fw ctl affinity –s
B. fw ctl multik stat
C. sim affinity –s
D. sim affinity –s –i eth 1 0
Which of the following file is commonly associated with troubleshooting crashes on a system such as the Security Gateway?
A. core dump
B. CPMIL dump
C. fw monitor
D. tcpdump
What Makes leads4pass.com Differ From Others?
There are tens of thousands of certification exam dumps provided on the internet. To keep the exam dumps valid, the exam questions latest and the exam answers accurate should be the first aim. Also, to make the exam PDF and exam VCE simulator easy to use is very important. Besides, leads4pass.com has 100% pass guarantee policy. Free exam demo is available. Customer support team is ready to help at any time when required.
All rights are reserved by leads4pass.com. Any changes, copy or trademarks abuse will be regarded as infringement. leads4pass.com will reserve the right to pursue accountability.
Copyright © 2004-2024 leads4pass.com.