Test4pass
Expert
In
IT
Certification
Exams
Exam
:
CheckPoint 156-215.75
Title
:
Check Point Certified Security Administrator
Version :
Demo
http://www.test4pass.com Leading the way in IT Certification Exams
Test4pass
Expert
In
IT
Certification
Exams
Top 3 Customers in Test4passs - Best IT certifications Team
HOT Certifications On Test4pass Cisco Certifications CCNA CCDA CCNP
CCDP
CCVP
CCSP
CCIP
CCIE
CCDE
Data Center
Sales Expert
Microsoft Certifications MCP
MCSE
MCSE2003 Security
MCITP MCTS MCSE2003 MCSE2003 Messaging
MCPD
MCSD.NET
MCDST
TS Exchange Server2007
Microsoft Business Solutions
IBM Certifications Certified Administrator DB2
Certified Systems Expert
Certified Advanced Technical Expert
Lotus Certification
Solutions Expert System Administator
Certified Advanced System Administrator
WebSphere Cognos 8 BI
Certified Associate Developer Tivoli Software
CompTIA Certifications A+ Server+
CDIA+
PDI+
CTT+
e-Biz+
Convergence+
CompTIA HTI+ i-NET+ Linux+
Network+ Project+
RFID+
Security+
Test4pass
Expert
In
IT
Certification
Exams
1. Where can you find the Check Point's SNMP MIB file? A. $FWDIR/conf/snmp.mib B. It is obtained only by request from the TAC. C. $CPDIR/lib/snmp/chkpt.mib D. There is no specific MIB file for Check Point products. Answer: C
2. You want to generate a cpinfo file via CLI on a system running SecurePlatform. This will take about 40 minutes since the log files are also needed. What action do you need to take regarding timeout? A. Log in as the default user expert and start cpinfo. B. No action is needed because cpshell has a timeout of one hour by default. C. Log in as Administrator, set the timeout to one hour with the command idle 60 and start cpinfo. D. Log in as admin, switch to expert mode, set the timeout to one hour with the command, idle 60, then start cpinto. Answer: C
3. Many companies have defined more than one administrator. To increase security, only one administrator should be able to install a Rule Base on a specific Firewall. How do you configure this? A. Define a permission profile in SmartDashboard with read/write privileges, but restrict it to all other firewalls by placing them in the Policy Targets field. Then, an administrator with this permission profile cannot install a policy on any Firewall not listed here. B. In the General Properties of the object representing the specific Firewall, go to the Software Blades product list and select Firewall. Right-click in the menu, select Administrator to Install to define only this administrator. C. Put the one administrator in an Administrator group and configure this group in the specific Firewall object in Advanced > Permission to Install. D. Right-click on the object representing the specific administrator, and select that Firewall in Policy Targets.
http://www.test4pass.com Leading the way in IT Certification Exams
Test4pass
Expert
In
IT
Certification
Exams
Answer: C
4. What is the officially accepted diagnostic tool for IP appliance support? A. Ipsinfo B. Uag-diag C. CST D. cpinfo Answer: C
5. You are the Security Administrator for MegaCorp. A Check Point firewall is installed and in use on a SecurePlatform. You have trouble configuring the speed and duplex settings of your Ethernet interfaces. Which of the following commands can be used to configure the speed and duplex settings of an Ethernet interface and will survive a reboot? Give the BEST answer. A. cthtool B. ifconfig a C. eth_set D. mii_tool Answer: C
6. Which command enables IP forwarding on IPSO? A. echo 1 > /proc/sys/net/ipv4/ip_forward B. clish -c set routing active enable C. echo 0 > /proc/sys/net/ipv4/ip_forward D. ipsofwd on admin Answer: D
7. How many inspection capture points are shown in fw monitor? A. 2
http://www.test4pass.com Leading the way in IT Certification Exams
Test4pass
Expert
In
IT
Certification
Exams
B. 1 C. Depends on the number of interfaces on the Gateway D. 4 Answer: D
8. Looking at a fw monitor capture in Wireshark, the initiating packet in Hide NAT translates on________. A. I B. O C. o D. i Answer: B
9. You want to create an ASCII formatted output file of the fw monitor command. What is the correct syntax to accomplish this task? A. fw monitor -e "accept;" > /tmp/monitor.txt B. fw monitor -e "accept;" -f > /tmp/monitor.txt C. fw monitor -m iO -e "accept;" -o /tmp/monitor.txt D. fw monitor -e "accept;" -w /tmp/monitor.txt Answer: A
10. When you run the fw monitor -e "accept;" command, what type of traffic is captured? A. Only inbound traffic, before and after the inbound inspection. B. All traffic coming in all directions, before and after inbound and outbound inspection. C. All traffic accepted by the Rule Base. D. Only outbound traffic, before and after the outbound inspection. Answer: B
11. The Get Address button, found on the Host Node Object > General Properties page, will retrieve what? A. The IP address B. The domain name
http://www.test4pass.com Leading the way in IT Certification Exams
Test4pass
Expert
In
IT
Certification
Exams
C. The fully qualified domain name D. The Mac address Answer: A
12. You have just been hired as the Security Administrator for the Insure-It-All insurance company. Your manager gives you the following requirements for controlling DNS traffic: Required Result #1: Accept domain-name-over-TCP traffic (zone-transfer traffic) Required Result #2: Log domain-name-over-TCP traffic (zone-transfer traffic) Desired Result #1: Accept domain-name-over-UDP traffic (queries traffic) Desired Result #2: Do not log domain-name-over-UDP traffic (queries traffic) Desired Result #3: Do not clutter the Rule Base try creating explicit rules for traffic that can be controlled using Global Properties To begin, you make the following configuration changes, and install the Security Policy - Select the box Accept Domain Name over TCP (Zone Transfer) in Global Properties - Select the box Accept Domain Name over UDP (Queries) in Global Properties - Select the box Log Implied Rules in Global Properties Do your initial actions meet the required and desired results? A. The actions achieve the required results, and two of the desired results. B. The actions achieve all required results, but none of the desired results. C. The actions do not achieve the required results. D. The actions meet all required and desired results. Answer: A
13. When you change an implicit rule's order from last to first in global properties, how do you make the change take effect? A. Select save from the file menu B. Reinstall the security policy C. Select install database from the policy menu D. Run fw fetch from the security gateway Answer: B
http://www.test4pass.com Leading the way in IT Certification Exams
Test4pass
Expert
In
IT
Certification
Exams
14. You create implicit and explicit rules for the following network. The group object internal-networks includes networks 10.10.10.0 and 10.10.20.0. Assume Accept ICMP requests is enabled as Before last in Global Properties. Based on these rules, what happens if you Ping from host 10.10.10.5 to a host on the Internet by IP address? ICMP will be: A. dropped by rule 0. B. dropped by rule 2, the Cleanup Rule. C. accepted by rule 1. D. dropped by the last Implicit rule. Answer: C
15. How does the Get Address button, found on the Host Node Object > General Properties page retrieve the address? A. Route Table B. SNMP Get C. Address resolution (ARP. RARP) D. Name resolution (hosts file, DNS, cache) Answer: D
http://www.test4pass.com Leading the way in IT Certification Exams
Contact Test4pass
We are proud of our high-quality customer service, which serves you around the clock 24/7.
To get your problem resolved instantly, live support Read Our Frequently Asked Questions (FAQs) We have gathered the most frequently asked questions for you. Please read our list of FAQs.
Contact us by Live Messenger Sales:
Test4pass(at)hotmail.com
You can reach us at any of the email addresses listed below Please allow up to 24 hours for us to respond
•
MSN:
Test4pass@hotmail.com
http://www.Test4pass.com
help you 100% pass your IT certifications Exams on the first try