Fill in the blank: The tool _____ generates a R81 Security Gateway configuration report.
C
Explanation:
The cpinfo tool generates a R81 Security Gateway configuration report that includes information
about the hardware, operating system, product version, patches, and configuration
settings. Reference:
cpinfo - Check Point Support Center
Which of these statements describes the Check Point ThreatCloud?
D
Explanation:
The Check Point ThreatCloud is a worldwide collaborative security network that collects and analyzes
threat data from millions of sensors, security gateways, and other sources, and delivers real-time
threat intelligence and protection to Check Point products. Reference:
Check Point ThreatCloud
Automatic affinity means that if SecureXL is running, the affinity for each interface is automatically
reset every
B
Explanation:
Automatic affinity means that if SecureXL is running, the affinity for each interface is automatically
reset every 60 seconds based on the current traffic load. This ensures optimal performance and load
balancing of SecureXL instances. Reference:
SecureXL Mechanism
Which command will allow you to see the interface status?
C
Explanation:
The cphaprob -a if command displays the interface status of all cluster members, including the
interface name, IP address, state, monitor mode, and sync status. Reference:
cphaprob - Check Point
Support Center
Which command can you use to enable or disable multi-queue per interface?
A
Explanation:
The cpmq set command enables or disables multi-queue per interface. Multi-queue is a feature that
allows distributing the network traffic among several CPU cores, improving the throughput and
performance of the Security Gateway. Reference:
Multi-Queue
To help SmartEvent determine whether events originated internally or externally you must define
using the Initial Settings under General Settings in the Policy Tab. How many options are available to
calculate the traffic direction?
D
Explanation:
To help SmartEvent determine whether events originated internally or externally, you must define
the traffic direction using the Initial Settings under General Settings in the Policy Tab. There are four
options available to calculate the traffic direction: Incoming, Outgoing, Internal, and Other. Incoming
means the source is external and the destination is internal. Outgoing means the source is internal
and the destination is external. Internal means both the source and the destination are internal.
Other means both the source and the destination are external. Reference:
SmartEvent R81
Administration Guide
There are 4 ways to use the Management API for creating host object with R81 Management API.
Which one is NOT correct?
E
Explanation:
There are four ways to use the Management API for creating host object with R81 Management API:
Using Web Services, Using mgmt_cli tool, Using CLISH, and Using SmartConsole GUI console. Events
are collected with SmartWorkflow from Trouble Ticket systems is not a correct
option. Reference:
Check Point Management APIs
CoreXL is supported when one of the following features is enabled:
B
Explanation:
CoreXL is supported when one of the following features is enabled: IPS. CoreXL does not support
Check Point Suite with these features: Route-based VPN, IPv6, Overlapping NAT, QoS, Content
Awareness, Application Control, URL Filtering, Identity Awareness, HTTPS Inspection, DLP, Anti-Bot,
Anti-Virus, Threat Emulation. Reference:
CoreXL
You noticed that CPU cores on the Security Gateway are usually 100% utilized and many packets
were dropped. You don’t have a budget to perform a hardware upgrade at this time. To optimize
drops you decide to use Priority Queues and fully enable Dynamic Dispatcher. How can you enable
them?
C
Explanation:
To optimize drops you decide to use Priority Queues and fully enable Dynamic Dispatcher. You can
enable them by using the command fw ctl multik set_mode 9. This command sets the SecureXL
mode to 9, which means that Priority Queues are enabled and Dynamic Dispatcher is fully
enabled. Reference:
SecureXL Mechanism
Check Point Management (cpm) is the main management process in that it provides the architecture
for a consolidates management console. CPM allows the GUI client and management server to
communicate via web services using ___________.
A
Explanation:
Check Point Management (cpm) is the main management process that provides the architecture for
a consolidated management console. CPM allows the GUI client and management server to
communicate via web services using TCP port 19009 by default. Reference:
CPM process