156-515-65(2).pdf

(270 KB) Pobierz

Checkpoint 156-515-65

156-515.65 Check Point Certified Security Expert Plus

NGX R65

Practice Test

Version 1.0

Checkpoint 156-515-65: Practice Exam

QUESTION NO: 1

Which files should be acquired from a Windows 2003 Server system crash with a Dr. Watson

error?

A. drwtsn32.log

B. vmcore.log

C. core.log

D. memory.log

E. info.log

Answer: A

QUESTION NO: 2

VPN debugging information is written to which of the following files?

A. FWDIR/log/ahttpd.elg

B. FWDIR/log/fw.elg

C. $FWDIR/log/ike.elg

D. FWDIR/log/authd.elg

E. FWDIR/log/vpn.elg

Answer: C

QUESTION NO: 3

A. The information in the buffer is saved and packet capture continues, with new data stored in the

buffer.

B. Older packet information is dropped as new packet information is added.

C. Packet capture stops.

D. All packets in it are deleted, and the buffer begins filling from the beginning.

Answer: D

QUESTION NO: 4

Which file provides the data for the host_table output, and is responsible for keeping a record of all

internal IPs passing through the internal interfaces of a restricted hosts licensed Security

"Pass Any Exam. Any Time." - www.actualtests.com

fw monitor packets are collected from the kernel in a buffer. What happens if the buffer becomes

full?

tua

lTe

sts

.co

Checkpoint 156-515-65: Practice Exam

Gateway?

A. hosts.h

B. external.if

C. hosts

D. fwd.h

E. fwconn.h

Answer: D

QUESTION NO: 5

You modified the *def file on your Security Gateway, but the changes were not applied. Why?

A. There is more than one *.def file on the Gateway.

B. You did not have the proper authority.

C. *.def files must be modified on the SmartCenter Server.

D. The *.def file on the Gateway is read-only.

Assume you have a rule allowing HTTP traffic, on port 80, to a specific Web server in a

Demilitarized Zone (DMZ). If an external host port scans the Web server's IP address, what

information will be revealed?

A. Nothing; the NGX Security Server automatically block all port scans.

B. All ports are open on the Security Server.

C. All ports are open on the Web server.

D. The Web server's file structure is revealed.

E. Port 80 is open on the Web server.

Answer: E

QUESTION NO: 7

Which of the following types of information should an Administrator use tcpdump to view?

A. DECnet traffic analysis

B. VLAN trunking analysis

"Pass Any Exam. Any Time." - www.actualtests.com

tua

lTe

QUESTION NO: 6

sts

Answer: C

.co

Checkpoint 156-515-65: Practice Exam

C. NAT traffic analysis

D. Packet-header analysis

E. AppleTalk traffic analysis

Answer: D

QUESTION NO: 8

Which statement is true for route based VPNs?

A. IP Pool NAT must be configured on each gateway

B. Route-based VPNs replace domain-based VPNs

C. Route-based VPNs are a form of partial overlap VPN Domain

D. Packets are encrypted or decrypted automatically

E. Dynamic-routing protocols are not required

Answer: E

Select the answer that shows the order of the recommended actions that make up Check Point's

troubleshooting guidelines?

F. B, C, A, E, D

G. A, E, B, D, C

H. A, B, C, D, E

I. B, A, D, E, C

J. D, B, A, C, E

Answer: A

QUESTION NO: 10

"Pass Any Exam. Any Time." - www.actualtests.com

A. List Possible Causes

B. Identify the Problem

C. Collect Related Information

D. Consult Various Reference Sources

E. Test Causes Individually and Logically

tua

lTe

The list below provides all the actions Check Point recommends to troubleshoot a problem with

an NGX product.

sts

QUESTION NO: 9

.co

Checkpoint 156-515-65: Practice Exam

NGX Wire Mode allows:

A. Peer gateways to establish a VPN connection automatically from predefined preshared secrets.

B. Administrators to verify that each VPN-1 SecureClient is properly configured, before allowing it

access to the protected domain.

C. Peer gateways to fail over existing VPN traffic, by avoiding Stateful Inspection.

D. Administrators to monitor VPN traffic for troubleshooting purposes.

E. Administrators to limit the number of simultaneous VPN connections, to reduce the traffic load

passing through a Security Gateway.

Answer: C

QUESTION NO: 11

Answer: E

QUESTION NO: 12

A. UDP 18233

B. UDP 2746

C. UDP 18234

D. TCP 18231

E. UDP 18321

Answer: C

QUESTION NO: 13

Which of the following vpn debug options purges ike.elg and vpnd.elg, and creates a time stamp

before starting ike debug and vpn debug at the same time?

"Pass Any Exam. Any Time." - www.actualtests.com

A SecuRemote/SecureClient tunnel test uses which port?

tua

lTe

sts

A. fw monitor

B. cp policy

C. cp stat

D. fw policy

E. fw stat

.co

Which of the following commands identifies whether or not a Security Policy is installed or the

Security Gateway is operating with the Initial Policy?

Plik z chomika:

musli_com

Inne pliki z tego folderu:

156-210(1).pdf (1259 KB)
156-215-71(1).pdf (5176 KB)
156-215(2).pdf (798 KB)
156-310(1).pdf (5402 KB)
156-510(1).pdf (71 KB)

156-515-65(2).pdf

Plik z chomika:

Inne pliki z tego folderu:

Inne foldery tego chomika: