156-215.81.20 Sample Practice Exam Questions 2025 Updated Verified
Exam Study Guide Free Practice Test LAST UPDATED 156-215.81.20
NEW QUESTION # 197
How do logs change when the "Accounting" tracking option is enabled on a traffic rule?
- A. Provides log details view email to the Administrator.
- B. Provides additional information to the connected user.
- C. Involved traffic logs will be forwarded to a log server.
- D. Involved traffic logs are updated every 10 minutes to show how much data has passed on the connection.
Answer: D
NEW QUESTION # 198
When a SAM rule is required on Security Gateway to quickly block suspicious connections which are not restricted by the Security Policy, what actions does the administrator need to take?
- A. The administrator must work on the firewall CLI (for example with SSH and PuTTY) and the command 'sam block' must be used with the right parameters.
- B. The policy type SAM must be added to the Policy Package and a new SAM rule must be applied. Simply Publishing the changes applies the SAM rule on the firewall.
- C. The administrator should open the LOGS & MONITOR view and find the relevant log. Right clicking on the log entry will show the Create New SAM rule option.
- D. SmartView Monitor should be opened and then the SAM rule/s can be applied immediately. Installing policy is not required.
Answer: D
NEW QUESTION # 199
R80 is supported by which of the following operating systems:
- A. Gaia only
- B. Gaia, SecurePlatform, and Windows
- C. Windows only
- D. SecurePlatform only
Answer: A
NEW QUESTION # 200
Which part of SmartConsole allows administrators to add, edit delete, and clone objects?
- A. Object Navigator
- B. Object Browser
- C. Object Explorer
- D. Object Editor
Answer: C
NEW QUESTION # 201
Which encryption algorithm is the least secured?
- A. AES-128
- B. AES-256
- C. 3DES
- D. DES
Answer: D
NEW QUESTION # 202
Fill in the blank: An Endpoint identity agent uses a ___________ for user authentication.
- A. Token
- B. Certificate
- C. Username/password or Kerberos Ticket
- D. Shared secret
Answer: C
NEW QUESTION # 203
A stateful inspection firewall works by registering connection data and compiling this information. Where is the information stored?
- A. In the Sessions table.
- B. In a CSV file on the firewall hard drive located in $FWDIR/conf/.
- C. In State tables.
- D. In the system SMEM memory pool.
Answer: C
NEW QUESTION # 204
Which of the following is NOT supported by Bridge Mode Check Point Security Gateway
- A. Antivirus
- B. NAT
- C. Data Loss Prevention
- D. Application Control
Answer: B
NEW QUESTION # 205
John is the administrator of a R80 Security Management server managing r R77.30 Check Point Security Gateway. John is currently updating the network objects and amending the rules using SmartConsole.
To make John's changes available to other administrators, and to save the database before installing a policy, what must John do?
- A. Publish the session
- B. Logout of the session
- C. Install database
- D. File > Save
Answer: A
NEW QUESTION # 206
Which statement is NOT TRUE about Delta synchronization?
- A. Using UDP Multicast or Broadcast on port 8161
- B. Using UDP Multicast or Broadcast on port 8116
- C. Quicker than Full sync
- D. Transfers changes in the Kernel tables between cluster members
Answer: A
NEW QUESTION # 207
When defining group-based access in an LDAP environment with Identity Awareness, what is the BEST object type to represent an LDAP group in a Security Policy?
- A. SmartDirectory Group
- B. Group Template
- C. User Group
- D. Access Role
Answer: D
NEW QUESTION # 208
Fill in the blank: The _____ feature allows administrators to share a policy with other policy packages.
- A. Concurrent policy packages
- B. Global Policies
- C. Concurrent policies
- D. Shared policies
Answer: D
NEW QUESTION # 209
What is the BEST method to deploy Identity Awareness for roaming users?
- A. Use identity agents
- B. Share user identities between gateways
- C. Use captive portal
- D. Use Office Mode
Answer: A
NEW QUESTION # 210
Which statement is TRUE of anti-spoofing?
- A. Anti-spoofing is not needed when IPS software blade is enabled
- B. It is BEST Practice to have anti-spoofing groups in sync with the routing table
- C. With dynamic routing enabled, anti-spoofing groups are updated automatically whenever there is a routing change
- D. It is more secure to create anti-spoofing groups manually
Answer: B
NEW QUESTION # 211
If the Active Security Management Server fails or if it becomes necessary to change the Active to Standby, the following steps must be taken to prevent data loss. Providing the Active Security Management Server is responsible, which of these steps should NOT be performed:
- A. Manually synchronize the Active and Standby Security Management Servers.
- B. Change the Active Security Management Server to Standby.
- C. Change the Standby Security Management Server to Active.
- D. Rename the hostname of the Standby member to match exactly the hostname of the Active member.
Answer: D
NEW QUESTION # 212
Fill in the blank Once a license is activated, a___________should be installed.
- A. License Contract file
- B. Security Gateway Contract file
- C. License Management file
- D. Service Contract file
Answer: D
NEW QUESTION # 213
How many layers make up the TCP/IP model?
- A. 0
- B. 1
- C. 2
- D. 3
Answer: A
NEW QUESTION # 214
Which Threat Prevention Profile is not included by default in R80 Management?
- A. Optimized - Provides excellent protection for common network products and protocols against recent or popular attacks
- B. Recommended - Provides all protection for all common network products and servers, with impact on network performance
- C. Strict - Provides a wide coverage for all products and protocols, with impact on network performance
- D. Basic - Provides reliable protection on a range of non-HTTP protocols for servers, with minimal impact on network performance
Answer: B
NEW QUESTION # 215
......
The New 156-215.81.20 2025 Updated Verified Study Guides & Best Courses: https://exams4sure.actualcollection.com/156-215.81.20-exam-questions.html