NEW QUESTION 1
Which of the following is NOT a vpn debug command used for troubleshooting?

• A. fw ctl debug -m fw + conn drop vm crypt
• B. vpn debug trunc
• C. pclient getdata sslvpn
• D. vpn debug on TDERROR_ALL_ALL=5

Answer: C

NEW QUESTION 2
When running a debug with fw monitor, which parameter will create a more verbose output?

• A. -i
• B. -i
• C. -0
• D. -d

Answer: D

NEW QUESTION 3
Your fwm constantly crashes and is restarted by the watchdog. You can't find any coredumps related to this process, so you need to check If coredumps are enabled at all How can you achieve that?

• A. in dish run show core-dump status
• B. in expert mode run show core-dump status
• C. in dish run set core-dump status
• D. in dish run show coredumb status

Answer: D

NEW QUESTION 4
What are four main database domains?

• A. System, Global, Log, Event
• B. System, User, Host, Network
• C. Local, Global, User, VPN
• D. System, User, Global, Log

Answer: D

NEW QUESTION 5
When a User Mode process suddenly crashes it may create a core dump file. Which of the following information is available in the core dump and may be used to identify the root cause of the crash?
i Program Counter ii Stack Pointer
ii. Memory management information
iv Other Processor and OS flags / information

• A. i, ii, lii and iv
• B. i and n only
• C. iii and iv only
• D. D Only iii

Answer: C

NEW QUESTION 6
What are the maximum kernel debug buffer sizes, depending on the version

• A. 8MB or 32MB
• B. 8GB or 64GB
• C. 4MB or 8MB
• D. 32MB or 64MB

Answer: A

NEW QUESTION 7
Which of the following is NOT a valid "fwaccel" parameter?

• A. stat
• B. stats
• C. templates
• D. packets

Answer: D

NEW QUESTION 8
The two procedures available for debugging in the firewall kernel are
i fw ctl zdebug
ii fw ctl debug/kdebug
Choose the correct statement explaining the differences in the two

• A. (i) Is used for general debugging, has a small buffer and is a quick way to set kernel debug flags to get an output via command linewhereas (11) is useful when there is a need for detailed debugging and requires additional steps to set the buffer and get an output via command line
• B. (i) is used to debug the access control policy only, however (n) can be used to debug a unified policy
• C. (i) is used to debug only issues related to dropping of traffic, however (n) can be used for any firewall issue including NATing, clustering etc.
• D. (i) is used on a Security Gateway, whereas (11) is used on a Security Management Server

Answer: C

NEW QUESTION 9
The Check Point Firewall Kernel is the core component of the Gala operating system and an integral part of traffic inspection process. There are two procedures available for debugging the firewall kernel. Which procedure/command is used for detailed troubleshooting and needs more resources?

• A. fw ctl debug/kdebug
• B. fw ctl zdebug
• C. fw debug/kdebug
• D. fw debug/kdebug ctl

Answer: B

NEW QUESTION 10
What is connect about the Resource Advisor (RAD) service on the Security Gateways?

• A. RAD has a kernel module that looks up the kernel cache, notifies client about hits and misses and forwards a-sync requests to RAD user space module which is responsible for online categorization
• B. RAD is completely loaded as a kernel module that looks up URL in cache and if not found connects online for categorization There is no user space involvement in this process
• C. RAD functions completely in user space The Pattern Matter (PM) module of the CMI looks up for URLs in the cache and if not found, contact the RAD process in user space to do online categorization
• D. RAD is not a separate module, it is an integrated function of the 'fw1 kernel module and does all operations in the kernel space

Answer: C

NEW QUESTION 11
Where will the usermode core files be located?

• A. /var/log/dump/usermode
• B. /var/suroot
• C. SFWDlR/var'log/dump/usermode
• D. SCPDIR/var/log/dump/usermode

Answer: A

NEW QUESTION 12
John works for ABC Corporation. They have enabled CoreXL on their firewall John would like to identify the cores on which the SND runs and the cores on which the firewall instance is running. Which command should John run to view the CPU role allocation?

• A. fw ctl affinity -v
• B. fwaccel stat -I
• C. fw ctl affinity -I
• D. fw ctl cores

Answer: C

NEW QUESTION 13
What are the main components of Check Point's Security Management architecture?

• A. Management server, management database, log server, automation server
• B. Management server, Security Gatewa
• C. Multi-Domain Server, SmartEvent Server
• D. Management Serve
• E. Log Serve
• F. LDAP Server, Web Server
• G. Management server Log server, Gateway serve
• H. Security server

Answer: A

NEW QUESTION 14
The Check Pom! Firewall Kernel is the core component of the Gaia operating system and an integral part of the traffic inspection process There are two procedures available for debugging the firewall kernel Which procedure/command is used for troubleshooting packet drops and other kernel activites while using minimal resources (1 MB buffer)?

• A. fw ctl zdebug
• B. fw ctl debug/kdebug
• C. fwk ctl debug
• D. fw debug ctl

Answer: A

NEW QUESTION 15
What process monitors, terminates, and restarts critical Check Point processes as necessary?

• A. CPWD
• B. CPM
• C. FWD
• D. FWM

Answer: A

NEW QUESTION 16
PostgreSQL is a powerful, open source relational database management system Check Point offers a command for viewing the database to interact with Postgres interactive shell Which command do you need to enter the PostgreSQL interactive shell?

• A. psql_client cpm postgres
• B. mysql_client cpm postgres
• C. psql_c!ieni postgres cpm
• D. mysql -u root

Answer: A

NEW QUESTION 17
Jenna has to create a VPN tunnel to a CISCO ASA but has to set special property to renegotiate the Phase 2 tunnel after 10 MB of transferee1 data. This can not be configured in the smartconsole, so how can she modify this property?

• A. using GUIDBEDIT located in same directory as Smartconsole on the Windows client
• B. she need to install GUIDBEDIT which can be downloaded from the Usercenter
• C. she need to run GUIDBEDIT from CLISH which opens a graphical window on the smartcenter
• D. this cant be done anymore as GUIDBEDIT is not supported in R80 anymore

Answer: C

NEW QUESTION 18
Which of the following inputs is suitable for debugging HTTPS inspection issues?

• A. vpn debug cptls on
• B. fw ctl debug –m fw + conn drop cptls
• C. fw diag debug tls enable
• D. fw debug tls on TDERROR_ALL_ALL=5

Answer: B

NEW QUESTION 19
......