NEW QUESTION 1
How is communication between different Check Point components secured in R80? As with all questions, select the BEST answer.

• A. By using IPSEC
• B. By using SIC
• C. By using ICA
• D. By using 3DES

Answer: B

NEW QUESTION 2
Which Mobile Access Application allows a secure container on Mobile devices to give users access to internal website, file share and emails?

• A. Check Point Remote User
• B. Check Point Capsule Workspace
• C. Check Point Mobile Web Portal
• D. Check Point Capsule Remote

Answer: C

NEW QUESTION 3
Which of the following will NOT affect acceleration?

• A. Connections destined to or originated from the Security gateway
• B. A 5-tuple match
• C. Multicast packets
• D. Connections that have a Handler (ICMP, FTP, H.323, etc.)

Answer: B

NEW QUESTION 4
You are investigating issues with to gateway cluster members are not able to establish the first initial cluster synchronization. What service is used by the FWD daemon to do a Full Synchronization?

• A. TCP port 443
• B. TCP port 257
• C. TCP port 256
• D. UDP port 8116

Answer: C

NEW QUESTION 5
Which of the following describes how Threat Extraction functions?

• A. Detect threats and provides a detailed report of discovered threats.
• B. Proactively detects threats.
• C. Delivers file with original content.
• D. Delivers PDF versions of original files with active content removed.

Answer: B

NEW QUESTION 6
Fill in the blanks: In the Network policy layer, the default action for the Implied last rule is ______ all traffic. However, in the Application Control policy layer, the default action is _______ all traffic.

• A. Accept; redirect
• B. Accept; drop
• C. Redirect; drop
• D. Drop; accept

Answer: D

NEW QUESTION 7
Which of the completed statements is NOT true? The WebUI can be used to manage user accounts and:

• A. assign privileges to users.
• B. edit the home directory of the user.
• C. add users to your Gaia system.
• D. assign user rights to their home directory in the Security Management Server.

Answer: D

NEW QUESTION 8
Which one of the following is true about Capsule Connect?

• A. It is a full layer 3 VPN client
• B. It offers full enterprise mobility management
• C. It is supported only on iOS phones and Windows PCs
• D. It does not support all VPN authentication methods

Answer: A

NEW QUESTION 9
Which command will allow you to see the interface status?

• A. cphaprob interface
• B. cphaprob –I interface
• C. cphaprob –a if
• D. cphaprob stat

Answer: C

NEW QUESTION 10
In R80 spoofing is defined as a method of:

• A. Disguising an illegal IP address behind an authorized IP address through Port Address Translation.
• B. Hiding your firewall from unauthorized users.
• C. Detecting people using false or wrong authentication logins
• D. Making packets appear as if they come from an authorized IP address.

Answer: D

Explanation:
IP spoofing replaces the untrusted source IP address with a fake, trusted one, to hijack connections to your network. Attackers use IP spoofing to send malware and bots to your protected network, to execute DoS attacks, or to gain unauthorized access.

NEW QUESTION 11
In R80.10, how do you manage your Mobile Access Policy?

• A. Through the Unified Policy
• B. Through the Mobile Console
• C. From SmartDashboard
• D. From the Dedicated Mobility Tab

Answer: A

NEW QUESTION 12
In SmartConsole, objects are used to represent physical and virtual network components and also some logical components. These objects are divided into several categories. Which of the following is NOT an objects category?

• A. Limit
• B. Resource
• C. Custom Application / Site
• D. Network Object

Answer: B

NEW QUESTION 13
Check Point APIs allow system engineers and developers to make changes to their organization’s security policy with CLI tools and Web Services for all the following except:

• A. Create new dashboards to manage 3rd party task
• B. Create products that use and enhance 3rd party solutions
• C. Execute automated scripts to perform common tasks
• D. Create products that use and enhance the Check Point Solution

Answer: A

Explanation:
Check Point APIs let system administrators and developers make changes to the security policy with CLI tools and web-services. You can use an API to:
• Use an automated script to perform common tasks
• Integrate Check Point products with 3rd party solutions
• Create products that use and enhance the Check Point solution References:

NEW QUESTION 14
Which remote Access Solution is clientless?

• A. Checkpoint Mobile
• B. Endpoint Security Suite
• C. SecuRemote
• D. Mobile Access Portal

Answer: D

NEW QUESTION 15
When an encrypted packet is decrypted, where does this happen?

• A. Security policy
• B. Inbound chain
• C. Outbound chain
• D. Decryption is not supported

Answer: A

NEW QUESTION 16
What information is NOT collected from a Security Gateway in a Cpinfo?

• A. Firewall logs
• B. Configuration and database files
• C. System message logs
• D. OS and network statistics

Answer: A

NEW QUESTION 17
Which process handles connection from SmartConsole R80?

• A. fwm
• B. cpmd
• C. cpm
• D. cpd

Answer: C

NEW QUESTION 18
......