CheckPoint 156-115.80 CCSM Exam Practice Test Instant Access

Question 1

Your company plans to start migration on IPv6 protocol. What steps do you need to perform to fully enable IPv6 protocol on the Security Gateway?

AIssue ''set ipv6 enable''; Save configuration and reboot

BIssue ''set ipv6-state on''; Save configuration and reboot

CIssue ''set ipv6 on''; Save configuration and reboot

DIssue ''set ipv6-state enable''; Save configuration and reboot

Answer : B

Question 2

Which SecureXL table holds IPs that should not be accelerated?

Af2f_addresses

Bcphwd_psglue_conn_db

Ctcp_f2f_ports

Dudp_f2f_conns

Answer : A

Question 3

Which daemon is used for Geo protection?

Ain.geod

Bcphamcset

Cfwd

Dcpd

Answer : A

eventSubmit_doGoviewsolutiondetails=&solutionid=sk97638

Question 4

Which command(s) can be used to set up 5 core files per process?

Aset core-dump per_process 5 save config

Bset core-dump per_process amount = 5 save config

Cset core-dump per_process 5

Dadd core-dump per_process 5 save config

Answer : A

Question 5

Consider IPv4 header. How does the Security Gateway handle an IP packet that has bits set in its option type field?

AModifies TCP/UDP packet with IP options automatically

BUses PSL mechanism to pad the IP Options field

CDrop TCP/UDP packet with IP options

DAccept TCP/UDP packet with IP options

Answer : C

Question 6

You have users complain that they have no Internet access. Additionally, you have different Policy Layers configured to control Network Access, Web Filtering and Content. From the SmartLog you notice drop logs with the reason CPEarlyDrop. What is the main cause of this?

ADue to rulebase optimization, the connection is being blocked

BIn-Line layers with a clean-up rule must be used to optimize the rulebase

COrdered layers rulebase must contain a clean-up rule similar to main Access layer to avoid implicit drop and optimize the rulebase

DThis is the new implicit block in R80 gateways because there is no clean-up rule in at least one of the policy layers

Answer : A

Question 7

The CPSizeMe script will run how long by default?

A48 hours

B12 hours

C8 hours

D24 hours

Answer : D

CheckPoint 156-115.80 Check Point Certified Security Master - R80 CCSM Exam Practice Test