CheckPoint 156-215-81 practice test

Due to high CPU workload on the Security Gateway, the security administrator decided to purchase a
new multicore CPU to replace the existing single core CPU. After installation, is the administrator
required to perform any additional tasks?

• A. Go to clash-Run cpstop | Run cpstart
• B. Go to clash-Run cpconfig | Configure CoreXL to make use of the additional Cores | Exit cpconfig | Reboot Security Gateway
• C. Administrator does not need to perform any task. Check Point will make use of the newly installed CPU and Cores
• D. Go to clash-Run cpconfig | Configure CoreXL to make use of the additional Cores | Exit cpconfig | Reboot Security Gateway | Install Security Policy

When installing a dedicated R80 SmartEvent server, what is the recommended size of the root
partition?

• A. Any size
• B. Less than 20GB
• C. More than 10GB and less than 20 GB
• D. At least 20GB

Which firewall daemon is responsible for the FW CLI commands?

• A. fwd
• B. fwm
• C. cpm
• D. cpd

If the Active Security Management Server fails or if it becomes necessary to change the Active to
Standby, the following steps must be taken to prevent data loss. Providing the Active Security
Management Server is responsible, which of these steps should NOT be performed:

• A. Rename the hostname of the Standby member to match exactly the hostname of the Active member.
• B. Change the Standby Security Management Server to Active.
• C. Change the Active Security Management Server to Standby.
• D. Manually synchronize the Active and Standby Security Management Servers.

Using R80 Smart Console, what does a “pencil icon” in a rule mean?

• A. I have changed this rule
• B. Someone else has changed this rule
• C. This rule is managed by check point’s SOC
• D. This rule can’t be changed as it’s an implied rule

Which method below is NOT one of the ways to communicate using the Management API’s?

• A. Typing API commands using the “mgmt_cli” command
• B. Typing API commands from a dialog box inside the SmartConsole GUI application
• C. Typing API commands using Gaia’s secure shell (clash)19+
• D. Sending API commands over an http connection using web-services

Session unique identifiers are passed to the web api using which http header option?

• A. X-chkp-sid
• B. Accept-Charset
• C. Proxy-Authorization
• D. Application

What is the main difference between Threat Extraction and Threat Emulation?

• A. Threat Emulation never delivers a file and takes more than 3 minutes to complete
• B. Threat Extraction always delivers a file and takes less than a second to complete
• C. Threat Emulation never delivers a file that takes less than a second to complete
• D. Threat Extraction never delivers a file and takes more than 3 minutes to complete

Which one of these features is NOT associated with the Check Point URL Filtering and Application
Control Blade?

• A. Detects and blocks malware by correlating multiple detection engines before users are affected.
• B. Configure rules to limit the available network bandwidth for specified users or groups.
• C. Use UserCheck to help users understand that certain websites are against the company’s security policy.
• D. Make rules to allow or block applications and Internet sites for individual applications, categories, and risk levels.

You want to store the GAiA configuration in a file for later reference. What command should you use?

• A. write mem <filename>
• B. show config -f <filename>
• C. save config -o <filename>
• D. save configuration <filename>