Check Point Certified Threat Prevention Specialist (CTPS) v1.0

Page:    1 / 5   
Exam contains 75 questions

Using IPS can send a large part of traffic to F2F path. Which command can you use to enforce traffic quotas?

  • A. fw dos rate
  • B. fwaccel rate
  • C. fw ctl dos
  • D. fwaccel dos rate


Answer : D

What happens to traffic that matches the Access Control Policy but not the Threat Prevention Policy?

  • A. It is dropped and logged.
  • B. It is accepted and logged.
  • C. It is accepted.
  • D. The traffic is not dropped. It is simply not inspected by the Threat Prevention Engine.


Answer : D

What does the profile cleanup option do?

  • A. Adjusts all settings to Detect only
  • B. Removes all Administrator overrides
  • C. Deletes all Exemptions
  • D. Removes corrupt updates


Answer : B

Which protection setting is generally the MOST resource intensive?

  • A. Inactive
  • B. Prevent
  • C. Inspect
  • D. Detect


Answer : B

What is the action for newly updated protections which is set in Staging Mode?

  • A. Detect
  • B. Bypass
  • C. None
  • D. Prevent


Answer : A

What does not belong to types of exceptions?

  • A. IPS Settings Exceptions.
  • B. QoS Policy exemptions.
  • C. Core Activations Exceptions.
  • D. Implied IPS Exceptions.


Answer : B

What is the correct action to exclude one or mode Threat Prevention Blades in a Blade exception rule?

  • A. "inactive"
  • B. "ignore"
  • C. "Ask user"
  • D. "bypass"


Answer : D

What does ThreatCloud DGA Protection defend against?

  • A. Known malicious IPs
  • B. Infected URLs
  • C. Infected files
  • D. Newly created domains


Answer : D

What are the common features included in the NGFW, NGTP and SNBT packages, respectively?

  • A. Firewall, Antivirus, Threat Emulation
  • B. Firewall, Identity Awareness, Content Awareness, and IPS
  • C. Firewall, IPS, Antivirus, Antibot
  • D. Firewall, IPS, Antivirus, Threat Emulation


Answer : B

Which of the following is NOT a valid Blade bundle?

  • A. Next Generation Firewall
  • B. Next Generation Full Protection
  • C. Next Generation Threat Prevention
  • D. SandBlast


Answer : B

Where is IPS primarily enforced?

  • A. Post-infection
  • B. Post-inspection
  • C. Pre-infection
  • D. Pre-inspection


Answer : C

What type of layer is the threat Prevention?

  • A. It can be ordered or inline
  • B. Inline
  • C. Post Access Control follow-up layer
  • D. Ordered


Answer : D

Benign testing sites are useful for what purpose?

  • A. Testing rulebase reaction to tested traffic
  • B. Verify if SmartEvent is capturing appropriate traffic
  • C. Testing if URLs are malicious
  • D. Verify Threat Prevention Blades are performing properly


Answer : D

You have been asked to inform your CEO about last week's security incident. What SmartEvent mechanism are you going to use?

  • A. You have to use Smart Event threat prevention View to get the information then extract it to csv format and then generate a pdf with this info.
  • B. The executive reports generally contain abstract information without much technical detail. You have to use Smart Event Threat Prevention Report filtered for last week data.
  • C. From the smart log you filter out traffic for last week and export it to a special report generate tool.
  • D. You have to build a view for last week and submit it to your CEO.


Answer : B

Which protection setting is generally the LEAST resource intensive?

  • A. Prevent
  • B. Inspect
  • C. Detect
  • D. Inactive


Answer : D

Page:    1 / 5   
Exam contains 75 questions

Talk to us!


Have any questions or issues ? Please dont hesitate to contact us

Certlibrary.com is owned by MBS Tech Limited: Room 1905 Nam Wo Hong Building, 148 Wing Lok Street, Sheung Wan, Hong Kong. Company registration number: 2310926
Certlibrary doesn't offer Real Microsoft Exam Questions. Certlibrary Materials do not contain actual questions and answers from Cisco's Certification Exams.
CFA Institute does not endorse, promote or warrant the accuracy or quality of Certlibrary. CFA® and Chartered Financial Analyst® are registered trademarks owned by CFA Institute.
Terms & Conditions | Privacy Policy | Amazon Exams | Cisco Exams | CompTIA Exams | Databricks Exams | Fortinet Exams | Google Exams | Microsoft Exams | VMware Exams