156-210 by CheckPoint Actual Free Exam Questions And Answers

Question 1

CORRECT TEXT
Which of the following statements is TRUE of transparent authentication in NG with Application Intelligence? (Choose three)

Discussion 0

Correct Answer:

Pending

Question 2

In the SmartView Tracker, what is the difference between the FireWall-1 and VPN-1 queries? Choose three.

A. A FireWall-1 query also displays encryption and decryption information.

B. A VPV-1 query only displays encrypted and decrypted traffic.

C. A FireWall-1 query displays all traffic matched by all rules.

D. A FireWall-1 query displays all traffic matched by rules, which have logging activated.

E. Implied rules, when logged, are viewed using the VPN-1 query.

Discussion 0

Correct Answer: A,B,D Vote an answer

Question 3

CORRECT TEXT
VPN-1/FireWall-1 logs are exportable to other applications, such as spreadsheets or databases, using which of the following?

Discussion 0

Correct Answer:

Pending

Question 4

Hidden (or masked) rules are used to:

A. Hide rules from administrators with lower privileges.

B. Temporarily disable rules, without having to reinstall the Security Policy.

C. View only a few rules, without distraction of others.

D. Delete rules, without having to reinstall the Security Policy.

E. Temporarily convert specifically defined rules to implied rules.

Discussion 0

Correct Answer: C Vote an answer

Question 5

A conflict between anti-spoofing and Network Address Translation (NAT) occurs when:

A. The Translate destination on the client-side option is not enabled when using Static NAT:

B. NAT is performed on the client side.

C. Manual NAT rules are used.

D. The Translate destination on the server-side option is enabled.

E. The Translate destination on the client-side option is enabled.

Discussion 0

Correct Answer: A Vote an answer

Question 6

One of the most important tasks Security Adminstrators perform is log maintenance.
By default, when an administrator clicks File > Switch Active file from SmartView Tracker, the SmartCenter server:

A. Saves the current log file, names the save file by date and time and starts a new log.

B. Purges the current log file, and starts a new log.

C. Purges the current log file, and prompts the Security Administrator for the mode of the new log.

D. Prompts the Security Administrator for the name of the current log, saves it, and then prompts the Security Administrator for the mode of the new log.

E. Opens a new window with a previously saved log for viewing.

Discussion 0

Correct Answer: A Vote an answer

Question 7

When configuring Static NAT, you cannot map the routable IP address to the external IP address of the Firewall if attempted, the security policy installation fails with the following error "rule X conflicts with rule Y".

A. False

B. True

Discussion 0

Correct Answer: B Vote an answer

Explanation: Only visible for Fast2test members. You can sign-up / login (it's free).

Question 8

Selection and Explanation of UDP Packet Delivery Conditions?

A. A response to a request.

B. Allowed by the Rule Base.

C. Both B and D.

D. Source routed.

E. A request.

Discussion 0

Correct Answer: C Vote an answer

Explanation: Only visible for Fast2test members. You can sign-up / login (it's free).

Question 9

Changes made to the Security Policy do not take effect on the Enforcement Module until the administrator performs which of the following actions?

A. Install the policy.

B. Verifies the policy.

C. Saves the policy.

D. Stops firewall services on the Management module.

E. Stops firewall services on the Enforcement Module.

Discussion 0

Correct Answer: A Vote an answer

Explanation: Only visible for Fast2test members. You can sign-up / login (it's free).

Question 10

A. Application

B. Physical

C. Network

D. Transport

E. Data

Discussion 0

Correct Answer: C Vote an answer

Explanation: Only visible for Fast2test members. You can sign-up / login (it's free).

Question 11

CORRECT TEXT
You have created a rule so that every time a user wants to connect to the Internet using HTTP, that user must be authenticated. You want an authentication scheme that provides transparency for the user, and administrative control for you. The user must be able to log in from any location.
Which authentication scheme meets your needs?

Discussion 0

Correct Answer:

Pending
Section BStudy these questions as well

Question 12

The Enforcement Module (part if the VPN-1/FireWall-1 Module):

A. Can provide authentication and Content Security features at the application level.

B. All of the above.

C. Examines all communications according to an Enterprise Security Policy.

D. Us usually installed on a multi-homed machine.

E. Is installed on a host enforcement point.

Discussion 0

Correct Answer: B Vote an answer

Explanation: Only visible for Fast2test members. You can sign-up / login (it's free).

Question 13

Where is the external if file located in VPN1/Firewall-1 NG?

A. State directory.

B. FWDIR conf directory.

C. Not used in VPN1/Firewall-1 NG.

D. Database directory.

E. Temp Directory.

Discussion 0

Correct Answer: C Vote an answer

Explanation: Only visible for Fast2test members. You can sign-up / login (it's free).

CheckPoint Check Point CCSA NG - 156-210 Exam Practice Test

Contact Us

Useful Links

Latest Updated