Check Point Certified Security Administrator R81 v1.0

Page:    1 / 16   
Exam contains 238 questions
Expand All

What is the purpose of Captive Portal?

  • A. It manages user permission in SmartConsole
  • B. It provides remote access to SmartConsole
  • C. It authenticates users, allowing them access to the Internet and corporate resources
  • D. It authenticates users, allowing them access to the Gaia OS


Answer : C

Which of these is NOT a feature or benefit of Application Control?

  • A. Eliminate unknown and unwanted applications in your network to reduce IT complexity and application risk.
  • B. Identify and control which applications are in your IT environment and which to add to the IT environment.
  • C. Scans the content of files being downloaded by users in order to make policy decisions.
  • D. Automatically identify trusted software that has authorization to run


Answer : C

Identity Awareness allows easy configuration for network access and auditing based on what three items?

  • A. Client machine IP address.
  • B. Network location, the identity of a user and the identity of a machine.
  • C. Log server IP address.
  • D. Gateway proxy IP address.


Answer : B

How do logs change when the "Accounting" tracking option is enabled on a traffic rule?

  • A. Involved traffic logs will be forwarded to a log server.
  • B. Provides log details view email to the Administrator.
  • C. Involved traffic logs are updated every 10 minutes to show how much data has passed on the connection.
  • D. Provides additional information to the connected user.


Answer : A

Fill in the blank: The position of an Implied rule is manipulated in the _______ window.

  • A. NAT
  • B. Global Properties
  • C. Object Explorer
  • D. Firewall


Answer : B

You have enabled "Extended Log" as a tracking option to a security rule. However, you are still not seeing any data type information. What is the MOST likely reason?

  • A. Identity Awareness is not enabled.
  • B. Log Trimming is enabled.
  • C. Logging has disk space issues
  • D. Content Awareness is not enabled.


Answer : C

How many layers make up the TCP/IP model?

  • A. 2
  • B. 4
  • C. 6
  • D. 7


Answer : B

Fill in the blank: The _____ feature allows administrators to share a policy with other policy packages.

  • A. Concurrent policy packages
  • B. Concurrent policies
  • C. Global Policies
  • D. Shared policies


Answer : D

Access roles allow the firewall administrator to configure network access according to:

  • A. remote access clients.
  • B. a combination of computer or computer groups and networks.
  • C. users and user groups.
  • D. All of the above.


Answer : D

In SmartEvent, a correlation unit (CU) is used to do what?

  • A. Collect security gateway logs, Index the logs and then compress the logs.
  • B. Receive firewall and other software blade logs in a region and forward them to the primary log server.
  • C. Analyze log entries and identify events.
  • D. Send SAM block rules to the firewalls during a DOS attack.


Answer : C

The competition between stateful inspection and proxies was based on performance, protocol support, and security. Considering stateful Inspections and Proxies, which statement is correct?

  • A. Stateful Inspection is limited to Layer 3 visibility, with no Layer 4 to Layer 7 visibility capabilities.
  • B. When it comes to performance, proxies were significantly faster than stateful inspection firewalls.
  • C. Proxies offer far more security because of being able to give visibility of the payload (the data).
  • D. When it comes to performance, stateful inspection was significantly faster than proxies.


Answer : C

What are the Threat Prevention software components available on the Check Point Security Gateway?

  • A. IPS, Threat Emulation and Threat Extraction
  • B. IPS, Anti-Bot, Anti-Virus, SandBlast and Macro Extraction
  • C. IPS, Anti-Bot, Anti-Virus, Threat Emulation and Threat Extraction
  • D. IDS, Forensics, Anti-Virus, Sandboxing


Answer : B

Check Point licenses come in two forms. What are those forms?

  • A. Central and Local.
  • B. Access Control and Threat Prevention.
  • C. On-premise and Public Cloud.
  • D. Security Gateway and Security Management.


Answer : A

Both major kinds of NAT support Hide and Static NAT. However, one offers more flexibility. Which statement is true?

  • A. Manual NAT can offer more flexibility than Automatic NAT.
  • B. Dynamic Network Address Translation (NAT) Overloading can offer more flexibility than Port Address Translation.
  • C. Dynamic NAT with Port Address Translation can offer more flexibility than Network Address Translation (NAT) Overloading.
  • D. Automatic NAT can offer more flexibility than Manual NAT.


Answer : A

What is the default tracking option of a rule?

  • A. Tracking
  • B. Log
  • C. None
  • D. Alert


Answer : B

Page:    1 / 16   
Exam contains 238 questions
Expand All

Talk to us!

Have any questions or issues ? Please dont hesitate to contact us

[email protected]

Certlibrary.com is owned by MBS Tech Limited: Room 1905 Nam Wo Hong Building, 148 Wing Lok Street, Sheung Wan, Hong Kong. Company registration number: 2310926
Certlibrary doesn't offer Real Microsoft Exam Questions. Certlibrary Materials do not contain actual questions and answers from Cisco's Certification Exams.
CFA Institute does not endorse, promote or warrant the accuracy or quality of Certlibrary. CFA® and Chartered Financial Analyst® are registered trademarks owned by CFA Institute.
Terms & Conditions | Privacy Policy