NEW QUESTION 1
What is the port used for SmartConsole to connect to the Security Management Server:

• A. CPMI port 18191/TCP
• B. CPM port / TCP port 19009
• C. SIC port 18191/TCP
• D. https port 4434/TCP

Answer: A

NEW QUESTION 2
Fill in the blank: The command provides the most complete restoration of a R80 configuration.

• A. upgrade_import
• B. cpconfig
• C. fwn dbimport –p <export file>
• D. cpinfo –recover

Answer: A

NEW QUESTION 3
The technical-support department has a requirement to access an intranet server. When configuring a User Authentication rule to achieve this, which of the following should you remember?

• A. You can only use the rule for Telnet, FTP, SMTP, and rlogin services.
• B. The Security Gateway first checks if there is any rule that does not require authentication for this type of connection before invoking the Authentication Security Server.
• C. Once a user is first authenticated, the user will not be prompted for authentication again until logging out.
• D. You can limit the authentication attempts in the User Properties’ Authentication tab.

Answer: B

NEW QUESTION 4
You find that Users are not prompted for authentication when they access their Web servers, even though you have created an HTTP rule via User Authentication. Choose the BEST reason why.

• A. You checked the cache password on desktop option in Global Properties.
• B. Another rule that accepts HTTP without authentication exists in the Rule Base.
• C. You have forgotten to place the User Authentication Rule before the Stealth Rule.
• D. Users must use the SecuRemote Client, to use the User Authentication Rule.

Answer: B

NEW QUESTION 5
You need to change the number of firewall instances used by CoreXL. How can you achieve this goal?

• A. edit fwaffinity.conf; reboot required
• B. cpconfig; reboot required
• C. edit fwaffinity.conf; reboot not required
• D. cpconfig: reboot not required

Answer: B

NEW QUESTION 6
If you need strong protection for the encryption of user data, what option would be the BEST choice?

• A. Use Diffie-Hellman for key construction and pre-shared keys for Quick Mod
• B. Choose SHA in Quick Mode and encrypt with AE
• C. Use AH protoco
• D. Switch to Aggressive Mode.
• E. When you need strong encryption, IPsec is not the best choic
• F. SSL VPN’s are a better choice.
• G. Use certificates for Phase 1, SHA for all hashes, AES for all encryption and PFS, and use ESP protocol.
• H. Disable Diffie-Hellman by using stronger certificate based key-derivatio
• I. Use AES-256 bit on all encrypted channels and add PFS to QuickMod
• J. Use double encryption by implementing AH and ESP as protocols.

Answer: C

NEW QUESTION 7
To run GAiA in 64bit mode, which of the following is true?
1) Run set edition default 64-bit.
2) Install more than 4 GB RAM.
3) Install more than 4 TB of Hard Disk.

• A. 1 and 3
• B. 1 and 2
• C. 2 and 3
• D. 1, 2, and 3

Answer: B

NEW QUESTION 8
What CLI command will reset the IPS pattern matcher statistics?

• A. ips reset pmstat
• B. ips pstats reset
• C. ips pmstats refresh
• D. ips pmstats reset

Answer: D

Explanation: ips pmstats reset
Description - Resets the data that is collected to calculate the pmstat statistics. Usage - ips pmstats reset

NEW QUESTION 9
You are about to integrate RSA SecurID users into the Check Point infrastructure. What kind of users are to be defined via SmartDashboard?

• A. A group with generic user
• B. All users
• C. LDAP Account Unit Group
• D. Internal user Group

Answer: A

NEW QUESTION 10
GAiA greatly increases operational efficiency by offering an advanced and intuitive software update agent, commonly referred to as the:

• A. Check Point Upgrade Service Engine.
• B. Check Point Software Update Agent
• C. Check Point Remote Installation Daemon (CPRID)
• D. Check Point Software Update Daemon

Answer: A

NEW QUESTION 11
A snapshot delivers a complete GAiA backup. The resulting file can be stored on servers or as a local file in
/var/CPsnapshot/snapshots. How do you restore a local snapshot named MySnapshot.tgz?

• A. Reboot the system and call the start men
• B. Select the option Snapshot Management, provide the Expert password and select [L] for a restore from a local fil
• C. Then, provide the correct file name.
• D. As expert user, type the command snapshot -r MySnapshot.tgz.
• E. As expert user, type the command revert --file MySnapshot.tgz.
• F. As expert user, type the command snapshot - R to restore from a local fil
• G. Then, provide the correct file name.

Answer: C

NEW QUESTION 12
VPN Tunnel Sharing can be configured with any of the options below, EXCEPT One:

• A. Gateway-based
• B. Subnet-based
• C. IP range based
• D. Host-based

Answer: C

Explanation: VPN Tunnel Sharing provides interoperability and scalability by controlling the number of VPN tunnels created between peer Security Gateways. There are three available settings:

NEW QUESTION 13
You have selected the event Port Scan from Internal Network in SmartEvent, to detect an event when 30 port scans have occurred within 60 seconds. You also want to detect two port scans from a host within 10 seconds of each other. How would you accomplish this?

• A. Define the two port-scan detections as an exception.
• B. You cannot set SmartEvent to detect two port scans from a host within 10 seconds of each other.
• C. Select the two port-scan detections as a sub-event.
• D. Select the two port-scan detections as a new event.

Answer: A

NEW QUESTION 14
What is the officially accepted diagnostic tool for IP Appliance Support?

• A. ipsoinfo
• B. CST
• C. uag-diag
• D. cpinfo

Answer: B

NEW QUESTION 15
You are trying to configure Directional VPN Rule Match in the Rule Base. But the Match column does not have the option to see the Directional Match. You see the following window.

What must you enable to see the Directional Match?

• A. directional_match(true) in the objects_5_0.C file on Security Management Server
• B. VPN Directional Match on the Gateway object’s VPN tab
• C. VPN Directional Match on the VPN advanced window, in Global Properties
• D. Advanced Routing on each Security Gateway

Answer: C

NEW QUESTION 16
On R80.10 the IPS Blade is managed by:

• A. Threat Protection policy
• B. Anti-Bot Blade
• C. Threat Prevention policy
• D. Layers on Firewall policy

Answer: A