• Home
  • Articles
  • Get instant access to 156-915.80 Practice Tests 2021 Free Updated Today! [Q292-Q307]

Get instant access to 156-915.80 Practice Tests 2021 Free Updated Today! [Q292-Q307]

Share

Get instant access to 156-915.80 Practice Tests 2021 Free Updated Today!

Welcome to download the newest PassLeader 156-915.80 PDF dumps ( 500  Q&As)

NEW QUESTION 292
Which of the following tools is used to generate a Security Gateway R80 configuration report?

  • A. infoCP
  • B. infoview
  • C. cpinfo
  • D. fw cpinfo

Answer: C

 

NEW QUESTION 293
Mobile Access supports all of the following methods of Link Translation EXCEPT:

  • A. Path Translation (PT)
  • B. Identity Translation (IT)
  • C. URL Translation (UT)
  • D. Hostname Translation (HT)

Answer: B

Explanation:
Reference: https://sc1.checkpoint.com/documents/R77/CP_R77_Mobile_Access_WebAdmin/84202.htm

 

NEW QUESTION 294
You are investigating issues with two gateway cluster members that are not able to establish the first initial cluster synchronization. What service is used by the FWD daemon to do a Full Synchronization?

  • A. TCP port 256
  • B. UDP port 8116
  • C. TCP port 443
  • D. TCP port 257

Answer: A

Explanation:
Explanation/Reference:
Explanation:
Synchronization works in two modes:
Full sync transfers all Security Gateway kernel table information from one cluster member to another. It

is handled by the fwd daemon using an encrypted TCP connection.
Delta sync transfers changes in the kernel tables between cluster members. Delta sync is handled by

the Security Gateway kernel using UDP multicast or broadcast on port 8116.
Full sync is used for initial transfers of state information, for many thousands of connections. If a cluster member is brought up after being down, it will perform full sync. After all members are synchronized, only updates are transferred via delta sync. Delta sync is quicker than full sync.
Reference: https://sc1.checkpoint.com/documents/R76/CP_R76_ClusterXL_AdminGuide/7288.htm Port info:
https://www.cpug.org/forums/archive/index.php/t-12704.html

 

NEW QUESTION 295
What is the purpose of the pre-defined exclusions included with SmartEvent R80?

  • A. To avoid incorrect event generation by the default IPS event definition; a scenario that may occur in deployments that include Security Gateways of versions prior to R71.
  • B. To give samples of how to write your own exclusion.
  • C. As a base for starting and building exclusions.
  • D. To allow SmartEvent R80 to function properly with all other R71 devices.

Answer: A

 

NEW QUESTION 296
What information is NOT collected from a Security Gateway in a Cpinfo?

  • A. System message logs
  • B. Firewall logs
  • C. Configuration and database files
  • D. OS and network statistics

Answer: B

 

NEW QUESTION 297
GAiA greatly increases operational efficiency by offering an advanced and intuitive software update agent, commonly referred to as the:

  • A. Check Point Software Update Daemon
  • B. Check Point Upgrade Service Engine.
  • C. Check Point Remote Installation Daemon (CPRID)
  • D. Check Point Software Update Agent

Answer: B

 

NEW QUESTION 298
Charles requests a Website while using a computer not in the net_singapore network.

What is TRUE about his location restriction?

  • A. Source setting in User Properties always takes precedence.
  • B. Source setting in Source column always takes precedence.
  • C. It depends on how the User Auth object is configured; whether User Properties or Source Restriction takes precedence.
  • D. As location restrictions add up, he would be allowed from net_singapore and net_sydney.

Answer: C

 

NEW QUESTION 299
Fill in the blank: The command _______________ provides the most complete restoration of a R80 configuration.

  • A. cpconfig
  • B. upgrade_import
  • C. cpinfo -recover
  • D. fwn dbimport -p <export file>

Answer: B

 

NEW QUESTION 300
Your main internal network 10.10.10.0/24 allows all traffic to the Internet using Hide NAT. You also have a small network 10.10.20.0/24 behind the internal router. You want to configure the kernel to translate the source address only when network 10.10.20.0 tries to access the Internet for HTTP, SMTP, and FTP services. Which of the following configurations will allow this network to access the Internet?

  • A. Configure one Manual Hide NAT rule for HTTP, FTP, and SMTP services for network 10.10.20.0/24.
  • B. Configure Automatic Static NAT on network 10.10.20.0/24.
  • C. Configure three Manual Static NAT rules for network 10.10.20.0/24, one for each service.
  • D. Configure Automatic Hide NAT on network 10.10.20.0/24 and then edit the Service column in the NAT Rule Base on the automatic rule.

Answer: A

 

NEW QUESTION 301
Which of the following are authentication methods that Security Gateway R80 uses to validate connection attempts? Select the response below that includes the MOST complete list of valid authentication methods.

  • A. Connection, User, Client
  • B. Proxied, User, Dynamic, Session
  • C. User, Proxied, Session
  • D. User, Client, Session

Answer: D

 

NEW QUESTION 302
You are the Security Administrator for MegaCorp. A Check Point firewall is installed and in use on a platform using GAiA.
You have trouble configuring the speed and duplex settings of your Ethernet interfaces.
Which of the following commands can be used in CLISH to configure the speed and duplex settings of an Ethernet interface and will survive a reboot? Give the BEST answer.

  • A. set interface <options>
  • B. mii_tool
  • C. ifconfig -a
  • D. ethtool

Answer: A

 

NEW QUESTION 303
In order to optimize performance of a Security Gateway you plan to use SecureXL technology. Your company uses different types of applications. Identify application traffic that will NOT be accelerated

  • A. Transactions to the external application server using UDP
  • B. Custom application multicast traffic
  • C. TCP connections to the corporate Web-server
  • D. Corporate relational database TCP traffic

Answer: B

 

NEW QUESTION 304
What tool exports the Management Configuration into a single file?

  • A. migrate export
  • B. Backup
  • C. Upgrade_Export
  • D. CPConfig_Export

Answer: A

 

NEW QUESTION 305
The third-shift Administrator was updating Security Management Server access settings in Global Properties. He managed to lock all administrators out of their accounts. How should you unlock these accounts?

  • A. Reinstall the Security Management Server and restore using upgrade_import.
  • B. Login to SmartDashboard as the special cpconfig_admin user account; right-click on each administrator object and select unlock.
  • C. Delete the file admin.lock in the Security Management Server directory $FWDIR/tmp/.
  • D. Type fwm lock_admin -ua from the Security Management Server command line.

Answer: D

 

NEW QUESTION 306
A Threat Prevention profile is a set of configurations based on the following. (Choose all that apply.)

  • A. Anti-Bot settings, Threat Emulation settings, Intrusion-prevention settings, HTTPS inspection settings
  • B. Anti-Virus settings, Anti-Bot settings, Threat Emulation settings
  • C. Anti-Virus settings, Anti-Bot settings, Threat Emulation settings, Intrusion-prevention settings
  • D. Anti-Virus settings, Anti-Bot settings, Threat Emulation settings, Intrusion-prevention settings, HTTPS inspection settings

Answer: B

 

NEW QUESTION 307
......

Sep-2021 Latest TrainingDumps 156-915.80 Exam Dumps with PDF and Exam Engine: https://www.trainingdumps.com/156-915.80_exam-valid-dumps.html

Related Articles

more
CheckPoint 156-915.80 Certification Practice Exam

TrainingDumps offers you the latest and useful exam training dumps, with which you can face the coming exam more relaxed.

Latest Training Dumps

Useful Links

Contact Us

Our Working Time: ( GMT 0:00-15:00 )
From Monday to Saturday

Support: Contact now 

If you have any question please leave me your email address, we will reply and send email to you in 12 hours.

Copyright © 2026 TrainingDumps NETWORK CO.,LIMITED. All Rights Reserved. All trademarks used are properties of their respective owners. Privacy Policy