CheckPoint 156-585 Exam Practice Test Instant Access

Question 1

Which command(s) will turn off all vpn debug collection?

Avpn debug off

Bvpn debug -a off

Cvpn debug off and vpn debug ikeoff

Dfw ctl debug 0

Answer : C

Question 2

Which situation triggers an IPS bypass under load on a 24-core Check Point appliance?

Aany of the CPU cores is above the threshold for more than 10 seconds

Ball CPU core most be above the threshold for more than 10 seconds

Ca single CPU core must be above the threshold for more than 10 seconds, but is must be the same core during this time

Dthe average cpu utilization over all cores must be above the threshold for 1 second

Answer : A

Question 3

During firewall kernel debug with fw ctl zdebug you received less information than expected. You noticed that a lot of messages were lost since the time the debug was started. What should you do to resolve this issue?

AIncrease debug buffer; Use fw ctl debug --buf 32768

BRedirect debug output to file; Use fw ctl zdebug --o ./debug.elg

CIncrease debug buffer; Use fw ctl zdebug --buf 32768

DRedirect debug output to file; Use fw ctl debug --o ./debug.elg

Answer : A

Question 4

When a User Mode process suddenly crashes it may create a core dump file. Which of the following information is available in the core dump and may be used to identify the root cause of the crash?

i Program Counter

ii Stack Pointer

ii. Memory management information

iv Other Processor and OS flags / information

Ai, ii, lii and iv

Bi and n only

Ciii and iv only

DD Only iii

Answer : C

Question 5

What is the simplest and most efficient way to check all dropped packets in real time?

Afw ctl zdebug * drop in expert mode

BSmartlog

Ccat /dev/fwTlog in expert mode

Dtail -f SFWDIR/log/fw log |grep drop in expert mode

Answer : D

Question 6

the difference in debugging a S2S or C2S (using Check Point VPN Client) VPN?

Athere is no difference

Bthe C2S VPN uses a different VPN deamon and there a second VPN debug

Cthe C2S VPN can not be debugged as it uses different protocols for the key exchange

Dthe C2S client uses Browser based SSL vpn and cant be debugged

Answer : D

Question 7

What process is responsible for sending and receiving logs in the management server?

AFWD

BCPM

CFWM

DCPD

Answer : A

CheckPoint 156-585 Check Point Certified Troubleshooting Expert Exam Practice Test