CheckPoint 156-315.81 Check Point Certified Security Expert - R81.20 Exam Practice Test

Answer : D

The Advanced Networking Blade is not subscription-based and therefore does not have to be renewed on a regular basis. The Advanced Networking Blade is a software blade that provides advanced routing capabilities for Check Point Security Gateways. It supports dynamic routing protocols such as OSPF, BGP, RIP, and PIM, as well as features such as Policy-Based Routing (PBR), Multicast Routing, and IPv6 support. The Advanced Networking Blade is included in the Next Generation Firewall (NGFW) package and does not require a separate license.

Answer : C

What is the default size of NAT table fwx_alloc? The default size of NAT table fwx_alloc is25000. This table stores the connections that require NAT translation by the Security Gateway. The size of this table can be changed by using the commandfw ctl set int fwx_alloc <value>, where <value> is the desired number of connections. The maximum value is 65535. To make this change permanent, you need to add this command to the file$FWDIR/conf/fwaffinity.confon the Security Gateway. Reference: [R81 Performance Tuning Administration Guide], page 126.

Answer : C

Starting R81, the Access Control Policy installation process is accelerated thereby reducing the duration of the process significantly.According to the Check Point R81 Security Management Administration Guide1, Accelerated Install Policy is a new feature in R81 that optimizes common use-cases and drastically speeds up the installation with up to 90% improvement. Policy installation is accelerated depending on the changes that were made to the Access Control policy since the last installation. When the policy installation is accelerated, the icon will appear under the ''Install Policy Acceleration'' column in the Install Policy window.

Accelerated Install Policy - Check Point Software, section ''Accelerated Install Policy''

Answer : C

The best way to display the correlated events generated by SmartEvent policies is to open a new tab in the SmartConsole / Logs & Monitor and select External Apps / SmartEvent. This will launch the SmartEvent GUI, which provides a comprehensive view of the network security events, including charts, reports, and timelines.The SmartEvent GUI can also be accessed from a web browser using the SmartView web interface1. Reference:Check Point R81 SmartEvent Administration Guide

Answer : A

The secure application for Mail/Calendar for mobile devices in Check Point is called 'Capsule Workspace.' Capsule Workspace provides secure access to email and calendar data on mobile devices while maintaining security policies and controls.

Answer : A

The process that pulls the application monitoring status from gateways iscpd1.The cpd process is responsible for the communication between the Security Management Server and the Security Gateway2.It handles tasks such as policy installation, status reporting, logging, and synchronization2.The cpd process also monitors the application status of the Security Gateway, such as CPU, memory, disk space, and processes3.The cpd process sends this information to the Security Management Server, which displays it in SmartConsole and SmartView Monitor3.

Answer : D

The command switch to specify the Gaia API context ismgmt_cli --context gaia_api <Command>. This switch allows the user to execute Gaia OS commands through the management API.The Gaia API context is different from the default management API context, which is used to execute commands related to the security policy and objects1. Reference:Check Point R81 Management API Reference Guide