156-115.80 Online Practice Questions and Answers

Which of the following is NOT a valid "fwaccel" parameter?

A. stat

B. stats

C. templates

D. packets

What file extension should be used with fw monitor to allow the output file to be imported and read in Wireshark?

A. .cap

B. .exe

C. .tgz

D. .pcap

What is the default and maximum number of entries in the ARP Cache Table in a Check Point appliance?

A. 1,024 and 4,096

B. 4,096 and 16,384

C. 4,096 and 65,536

D. 1,024 and 16,384

What effect would change the parameter of fwha_timer_cpha_res to 5 have on a cluster?

A. Change the cluster interface active check to 5 milliseconds

B. Change the cphad to send test packets every 5 milliseconds

C. Change the sync network timeout to 5 seconds

D. Change the failover delay timeout to 500 milliseconds

The pepd and pdpd daemons are used by which Software blade?

A. Identity Awareness

B. DLP

C. URL Filtering

D. Application Control

In a high traffic network, which feature allows for more than one traffic path on an interface so that more than one CPU can be used for acceleration?

A. interface bonding

B. vlan

C. asic

D. multi queue

When debugging object configurations in SmartConsole, which new Windows Environment Variable must be added?

A. EMBEDDED_SDB_LOG

B. EMBEDDED_CPSC_LOG

C. EMBEDDED_DBS_log

D. EMBEDDED_SCDB_LOG

You have configured IPS Bypass Under Load function with additional kernel parameters: ids_tolerance_no_stress=15 and ids_tolerance_stress=15. For configuration you used the "fw ctl set" command. After reboot you noticed that these parameters returned to their default values. What do you need to do to make this configuration work immediately and stay permanent?

A. Set these parameters again with "fw ctl set" and edit appropriate parameters in $FWDIR/boot/modules/ fwkern.conf

B. Use script $FWDIR/bin IpsSetBypass.sh to set these parameters

C. Set these parameters again with "fw ctl set" and save configuration with "save config"

D. Edit appropriate parameters in $FWDIR/boot/modules/fwkern.conf

What is a primary advantage of using the fw monitor tool?

A. It always captures all packets hitting the physical layer

B. It is menu-driven, making it easy to configure

C. It has no negative impact on firewall performance

D. It can capture packets in various positions as they move through the firewall

The security administrator wants to verify if a specific connection is being handling by SecureXL. What command below is used to verify this information?

A. fwaccel conns

B. fwaccel stat

C. cpview

D. fw tab –t connections –f | grep