CheckPoint Check Point Certified Security Administrator R71 - 156-215-71 Exam Practice Test
Security Gateway R71 supports User Authentication for which of the following services? Select the response below that contains the MOST complete list of supported services.
Correct Answer: A
Vote an answer
You are creating an output file with the following command: fw monitor -e "accept (src=10.20.30.40 or dst=10.20.30.40);" -o ~/output
Which tool do you use to analyze this file?
Which tool do you use to analyze this file?
Correct Answer: C
Vote an answer
How can you reset the password of the Security Administrator that was created during initial installation of the Security Management Server on SecurePlatform?
Correct Answer: A
Vote an answer
You are Security Administrator for a large call center. The management team is concerned that employees may be installing and attempting to use peer-to-peer file-sharing utilities, during their lunch breaks. The call center's network is protected by an internal Security Gateway, configured to drop peer-to-peer file-sharing traffic. Which option do you use to determine the number of packets dropped by each Gateway?
Correct Answer: B
Vote an answer
You enable Hide NAT on the network object, 10.1.1.0 behind the Security Gateway's external interface. You browse to from host, 10.1.1.10 successfully. You enable a log on the rule that allows 10.1.1.0 to exit the network. How many log entries do you see for that connection in SmartView Tracker?
Correct Answer: C
Vote an answer
When you hide a rule in a Rule Base, how can you then disable the rule?
Correct Answer: A
Vote an answer
You installed Security Management Server on a computer using SecurePlatform in the MegaCorp home office. You use IP address 10.1.1.1. You also installed the Security Gateway on a second SecurePlatform computer, which you plan to ship to another Administrator at a MegaCorp hub office. What is the correct order for pushing SIC certificates to the Gateway before shipping it?
1) Run cpconfig on the gateway, set secure internal communication, enter the activation key and reconfirm.
2) Initialize internal certificate authority (ICA) on the security Management server.
3) Confirm the gateway object with the host name and IP address for the remote site.
4) Click the communication button in the gateway object's general screen, enter the activation key, and click initialize and ok.
5) Install the security policy.
1) Run cpconfig on the gateway, set secure internal communication, enter the activation key and reconfirm.
2) Initialize internal certificate authority (ICA) on the security Management server.
3) Confirm the gateway object with the host name and IP address for the remote site.
4) Click the communication button in the gateway object's general screen, enter the activation key, and click initialize and ok.
5) Install the security policy.
Correct Answer: B
Vote an answer
Which of the following is NOT a valid selection for tracking and controlling packets in R71?
Correct Answer: B
Vote an answer
The Security Gateway is installed on SecurePlatform R71. The default port for the Web User Interface is _______.
Correct Answer: B
Vote an answer
Which of the following commands can provide the most complete restore of an R71 configuration?
Correct Answer: D
Vote an answer
You have detected a possible intruder listed in SmartView Tracker's active pane. What is the fastest method to block this intruder from accessing your network indefinitely?
Correct Answer: A
Vote an answer
All of the following are Security Gateway control connections defined by default implied rules, EXCEPT:
Correct Answer: D
Vote an answer