CheckPoint 156-585 Exam Questions Instant Access

Question 1

Which of the following is NOT a vpn debug command used for troubleshooting?

Afw ctl debug -m fw + conn drop vm crypt

Bvpn debug trunc

Cpclient getdata sslvpn

Dvpn debug on TDERROR_ALL_ALL=5

Answer : C

Question 2

Check Point Access Control Daemons contains several daemons for Software Blades and features Which Daemon is used for Application & Control URL Filtering?

Arad

Bcprad

Cpepd

Dpdpd

Answer : C

Question 3

What is the function of the Core Dump Manager utility?

ATo generate a new core dump for analysis

BTo limit the number of core dump files per process as well as the total amount of disk space used by core files

CTo determine which process is slowing down the system

DTo send crash information to an external analyzer

Answer : B

Question 4

What is the benefit of running "vpn debug trunc over "vpn debug on"?

A'vpn debug trunc' purges ike.elg and vpnd elg and creates limestarnp while starting ike debug and vpn debug

B'vpn debug trunc* truncates the capture hence the output contains minimal capture

C'vpn debug trunc* provides verbose capture

DNo advantage one over the other

Answer : A

Question 5

The Check Pom! Firewall Kernel is the core component of the Gaia operating system and an integral part of the traffic inspection process There are two procedures available for debugging the firewall kernel Which procedure/command is used for troubleshooting packet drops and other kernel activites while using minimal resources (1 MB buffer)?

Afw ctl zdebug

Bfw ctl debug/kdebug

Cfwk ctl debug

Dfw debug ctl

Answer : A

Question 6

You need to run a kernel debug over a longer period of time as the problem occurs only once or twice a week. Therefore you need to add a timestamp to the kernel debug and write the output to a file What is the correct syntax for this?

Afw ctl kdebug -T -f > filename.debug

Bfw ctl kdebug -T > filename.debug

Cfw ctl debug -T -f > filename.debug

Dfw ctl kdebug -T -f -o filename.debug

Answer : C

Question 7

What file extension should be used with fw monitor to allow the output file to be imported and read in Wireshark?

A.cap

B.exe

C.tgz

D.pcap

Answer : A

CheckPoint Check Point Certified Troubleshooting Expert 156-585 Exam Questions