CheckPoint 156-215.80 CCSA Exam Practice Test Instant Access

Question 1

Which of the following technologies extracts detailed information from packets and stores that information in state tables?

AINSPECT Engine

BNext-Generation Firewall

CPacket Filtering

DApplication Layer Firewall

Answer : B

Question 2

Which of the following is NOT a policy type available for each policy package?

AThreat Emulation

BAccess Control

CDesktop Security

DThreat Prevention

Answer : A

Question 3

What is a role of Publishing?

AThe Publish operation sends the modifications made via SmartConsole in the private session and makes them public

BThe Security Management Server installs the updated policy and the entire database on Security Gateways

CThe Security Management Server installs the updated session and the entire Rule Base on Security Gateways

DModifies network objects, such as servers, users, services, or IPS profiles, but not the Rule Base

Answer : A

Question 4

You are the Check Point administrator for Alpha Corp. You received a call that one of the users is unable to browse the Internet on their new tablet which is connected to the company wireless, which goes through a Check Point Gateway. How would you review the logs to see what is blocking this traffic?

AOpen SmartLog and connect remotely to the wireless controller

BOpen SmartEvent to see why they are being blocked

COpen SmartDashboard and review the logs tab

DOpen SmartLog and filter for the IP address of the tablet

Answer : D

Question 5

Examine the sample Rule Base.

What will be the result of a verification of the policy from SmartConsole?

ANo errors or Warnings

BVerification Error. Empty Source-List in Rule 5 (Mail Inbound)

CVerification Error. Rule 4 (Web Inbound) hides Rule 6 (Webmaster access)

DVerification Error. Rule 7 (Clean-Up Rule) hides Implicit Clean-up Rule

Answer : C

Question 6

What is the purpose of a Stealth Rule?

AA rule used to hide a server's IP address from the outside world.

BA rule that allows administrators to access SmartDashboard from any device.

CTo drop any traffic destined for the firewall that is not otherwise explicitly allowed.

DA rule at the end of your policy to drop any traffic that is not explicitly allowed.

Answer : C

Question 7

An Endpoint identity agent uses a ___________ for user authentication.

AShared secret

BToken

CUsername/password or Kerberos Ticket

DCertificate

Answer : C

CheckPoint 156-215.80 Check Point Certified Security Administrator R80 CCSA Exam Practice Test