• Home
  • Articles
  • [Oct-2021] CCSE Update 156-915.80 Exam Practice Dumps [Q80-Q104]

[Oct-2021] CCSE Update 156-915.80 Exam Practice Dumps [Q80-Q104]

Share

[Oct-2021] CCSE Update 156-915.80 Exam Practice Dumps

2021 156-915.80 Premium Files Test pdf - Free Dumps Collection

NEW QUESTION 80
Which command would provide the most comprehensive diagnostic information to Check Point Technical Support?

  • A. diag
  • B. cpinfo -o date.cpinfo.txt
  • C. fw cpinfo
  • D. cpstat - date.cpstat.txt

Answer: B

 

NEW QUESTION 81
Automatic affinity means that is SecureXL is running, the affinity for each interface is automatically reset every.

  • A. 60 sec
  • B. 15 sec
  • C. 30 sec
  • D. 5 sec

Answer: A

Explanation:
Reference: https://sc1.checkpoint.com/documents/R77/CP_R77_PerformanceTuning_WebAdmin/6731.htm

 

NEW QUESTION 82
What is Check Point's CoreXL?

  • A. Multi Core support for Firewall Inspection
  • B. TCP-18190
  • C. A way to synchronize connections across cluster members
  • D. Multiple core interfaces on the device to accelerate traffic

Answer: A

 

NEW QUESTION 83
You are investigating issues with two gateway cluster members that are not able to establish the first initial cluster synchronization. What service is used by the FWD daemon to do a Full Synchronization?

  • A. TCP port 256
  • B. UDP port 8116
  • C. TCP port 443
  • D. TCP port 257

Answer: A

Explanation:
Synchronization works in two modes:
Full sync transfers all Security Gateway kernel table information from one cluster member to another. It is handled by the fwd daemon using an encrypted TCP connection.
Delta sync transfers changes in the kernel tables between cluster members. Delta sync is handled by the Security Gateway kernel using UDP multicast or broadcast on port 8116.
Full sync is used for initial transfers of state information, for many thousands of connections. If a cluster member is brought up after being down, it will perform full sync. After all members are synchronized, only updates are transferred via delta sync. Delta sync is quicker than full sync.
Reference:
https://sc1.checkpoint.com/documents/R76/CP_R76_ClusterXL_AdminGuide/7288.htm Port info: https://www.cpug.org/forums/archive/index.php/t-12704.html

 

NEW QUESTION 84
When Dynamic Dispatcher is enabled, connections are assigned dynamically with the exception of

  • A. Threat Emulation
  • B. HTTPS
  • C. VolP
  • D. QOS

Answer: C

Explanation:
Explanation
The following types of traffic are not load-balanced by the CoreXL Dynamic Dispatcher (this traffic will always be handled by the same CoreXL FW instance):
* VoIP
* VPN encrypted packets

 

NEW QUESTION 85
VPN Tunnel Sharing can be configured with any of the options below, EXCEPT One:

  • A. Host-based
  • B. Subnet-based
  • C. IP range based
  • D. Gateway-based

Answer: C

Explanation:
Explanation/Reference:
Explanation:
VPN Tunnel Sharing provides interoperability and scalability by controlling the number of VPN tunnels created between peer Security Gateways. There are three available settings:
One VPN tunnel per each pair of hosts

One VPN tunnel per subnet pair

One VPN tunnel per Security Gateway pair

Reference: https://sc1.checkpoint.com/documents/R77/CP_R77_VPN_AdminGuide/14018.htm

 

NEW QUESTION 86
You are about to integrate RSA SecurID users into the Check Point infrastructure. What kind of users are to be defined via SmartDashboard?

  • A. A group with generic user
  • B. LDAP Account Unit Group
  • C. Internal user Group
  • D. All users

Answer: A

 

NEW QUESTION 87
CORRECT TEXT
Type the full cphaprob command and syntax that will show full synchronization status.

Answer:

Explanation:
cphaprob -i list

 

NEW QUESTION 88
Before upgrading SecurePlatform to GAiA, you should create a backup. To save time, many administrators use the command backup. This creates a backup of the Check Point configuration as well as the system configuration.
An administrator has installed the latest HFA on the system for fixing traffic problem after creating a backup file. There is a mistake in the very complex static routing configuration. The Check Point configuration has not been changed. Can the administrator use a restore to fix the errors in static routing?

  • A. The restore is done by selecting Snapshot Management from the boot menu of GAiA.
  • B. A backup cannot be restored, because the binary files are missing.
  • C. The restore is not possible because the backup file does not have the same build number (version).
  • D. The restore can be done easily by the command restore and copying netconf.C from the production environment.

Answer: D

 

NEW QUESTION 89
Which of the following is NOT a valid way to view interface's IP address settings in Gaia?

  • A. Viewing the file / config/ active
  • B. Using the command sthtoolin Expert Mode
  • C. Via the command show configurationin CLISH
  • D. Via the Gaia WebUl

Answer: B

 

NEW QUESTION 90
Your R80 primary Security Management Server is installed on GAiA. You plan to schedule the Security Management Server to run fw logswitch automatically every 48 hours. How do you create this schedule?

  • A. Create a time object, and add 48 hours as the interval. Open the primary Security Management Server object's Logs and Masters window, enable Schedule log switch, and select the Time object.
  • B. Create a time object, and add 48 hours as the interval. Select that time object's Global Properties > Logs and Masters window, to schedule a logswitch.
  • C. On a GAiA Security Management Server, this can only be accomplished by configuring the command fw logswitch via the cron utility.
  • D. Create a time object, and add 48 hours as the interval. Open the Security Gateway object's Logs and Masters window, enable Schedule log switch, and select the Time object.

Answer: A

 

NEW QUESTION 91
What is the least amount of CPU cores required to enable CoreXL?

  • A. 0
  • B. 1
  • C. 2
  • D. 3

Answer: C

 

NEW QUESTION 92
Fill in the blank.

In New Mode HA, the internal cluster IP VIP address is 10.4.8.3. An internal host 10.4.8.108 successfully pings its Cluster and receives replies. Review the ARP table from the internal Windows host 10.4.8.108. Based on this information, what is the active cluster member's IP address?

Answer:

Explanation:
10.4.8.2

 

NEW QUESTION 93
You have selected the event Port Scan from Internal Network in SmartEvent, to detect an event when 30 port scans have occurred within 60 seconds. You also want to detect two port scans from a host within
10 seconds of each other. How would you accomplish this?

  • A. Select the two port-scan detections as a new event.
  • B. You cannot set SmartEvent to detect two port scans from a host within 10 seconds of each other.
  • C. Define the two port-scan detections as an exception.
  • D. Select the two port-scan detections as a sub-event.

Answer: C

 

NEW QUESTION 94
You want to implement Static Destination NAT in order to provide external, Internet users access to an internal Web Server that has a reserved (RFC 1918) IP address. You have an unused valid IP address on the network between your Security Gateway and ISP router. You control the router that sits between the firewall external interface and the Internet.
What is an alternative configuration if proxy ARP cannot be used on your Security Gateway?

  • A. Place a static host route on the firewall for the valid IP address to the internal Web server.
  • B. Place a static ARP entry on the ISP router for the valid IP address to the firewall's external address.
  • C. Publish a proxy ARP entry on the ISP router instead of the firewall for the valid IP address.
  • D. Publish a proxy ARP entry on the internal Web server instead of the firewall for the valid IP address.

Answer: B

 

NEW QUESTION 95
Which one of these features is NOT associated with the Check Point URL Filtering and Application Control Blade?

  • A. Use UserCheck to help users understand that certain websites are against the company's security policy.
  • B. Configure rules to limit the available network bandwidth for specified users or groups.
  • C. Detects and blocks malware by correlating multiple detection engines before users are affected.
  • D. Make rules to allow or block applications and Internet sites for individual applications, categories, and risk levels.

Answer: C

Explanation:
Explanation
Use the URL Filtering and Application Control Software Blades to:
References:

 

NEW QUESTION 96
Match the ClusterXL modes with their configurations.
Exhibit:

  • A. A-3, B-5, C-1, D-4
  • B. A-2, B-3, C-1, D-5
  • C. A-2, B-3, C-4, D-1
  • D. A-5, B-2, C-4, D-1

Answer: A

 

NEW QUESTION 97
What are the minimum open server hardware requirements for a Security Management Server/Standalone in R80.10?

  • A. 4 CPU cores, 8GB of RAM and 500GB of disk space
  • B. 2 CPU cores, 4GB of RAM and 15GB of disk space
  • C. 8 CPU cores, 32GB of RAM and 1 TB of disk space
  • D. 8 CPU cores, 16GB of RAM and 500 GB of disk space

Answer: A

Explanation:
Explanation/Reference:
Reference: http://dl3.checkpoint.com/paid/db/dbf0aa7672f1dd6031e6096b40510674/ CP_R80.10_ReleaseNotes.pdf?HashKey=1522175073_c4e7fc63c894ad28b3fbe49f9430c023&xtn=.pdf page 16

 

NEW QUESTION 98
To fully enable Dynamic Dispatcher on a Security Gateway:

  • A. run fw ctl multik set_mode 1 in Expert mode and then reboot
  • B. run fw ctl multik set_mode 9 in Expert mode and then reboot
  • C. Edit /proc/interrupts to include multik set_mode 1 at the bottom of the file, save, and reboot
  • D. Using cpconfig, upodate the Dynamic Dispatcher value to "full" under the CoreXl menu

Answer: B

 

NEW QUESTION 99
Joey is preparing a plan for Security management upgrade. He wants to upgrade management to R80.x.
What is the lowest supported version of the Security Management he can upgrade from?

  • A. Splat R75.40, he has to use an Advanced upgrade with Database Migration
  • B. R77.X with direct upgrade
  • C. R76
  • D. Gaia R75.40, he has to use an Advanced upgrade with Database Migration

Answer: B

 

NEW QUESTION 100
What makes Anti-Bot unique compared to other Threat Prevention mechanisms, such as URL Filtering, Anti-Virus, IPS, and Threat Emulation?

  • A. Anti-Bot is the only protection mechanism which starts a counter-attack against known Command & Control Centers
  • B. Anti-Bot is the only signature-based method of malware protection
  • C. Anti-Bot is the only countermeasure against unknown malware
  • D. Anti-Bot is a post-infection malware protection to prevent a host from establishing a connection to a Command & Control Center

Answer: D

Explanation:
Section: (none)
Explanation/Reference:
Reference: https://sc1.checkpoint.com/documents/R76/CP_R76_AntiBotAntiVirus_AdminGuide/index.html

 

NEW QUESTION 101
CPM process stores objects, policies, users, administrators, licenses and management data in a database.
This database is:

  • A. Postgres SQL
  • B. SOLR
  • C. MarisDB
  • D. MySQL

Answer: A

 

NEW QUESTION 102
Which command will reset the kernel debug options to default settings?

  • A. fw ctl dbg -a 0
  • B. fw ctl dbg resetall
  • C. fw ctl debug 0
  • D. fw ctl debug set 0

Answer: C

Explanation:
Reset the debugs to the default.
In case someone changed the setting in the past and since then the firewall was not rebooted we should set all back to the defaults.

 

NEW QUESTION 103
Jennifer McHanry is CEO of ACME. She recently bought her own personal iPad. She wants use her iPad to access the internal Finance Web server. Because the iPad is not a member of the Active Directory domain, she cannot identify seamlessly with AD Query. However, she can enter her AD credentials in the Captive Portal and then get the same access as on her office computer. Her access to resources is based on rules in the R80 Firewall Rule Base.
To make this scenario work, the IT administrator must:
1) Enable Identity Awareness on a gateway and select Captive Portal as one of the Identity Sources.
2) In the Portal Settings window in the User Access section, make sure that Name and password login is selected.
3) Create a new rule in the Firewall Rule Base to let Jennifer McHanry access network destinations.
Select accept as the Action.
Ms. McHanry tries to access the resource but is unable. What should she do?

  • A. Have the security administrator reboot the firewall
  • B. Install the Identity Awareness agent on her iPad
  • C. Have the security administrator select Any for the Machines tab in the appropriate Access Role
  • D. Have the security administrator select the Action field of the Firewall Rule "Redirect HTTP connections to an authentication (captive) portal"

Answer: D

 

NEW QUESTION 104
......

Get ready to pass the 156-915.80 Exam right now using our CCSE Update  Exam Package: https://www.troytecdumps.com/156-915.80-troytec-exam-dumps.html

Related Articles

more
CheckPoint 156-915.80 Certification Practice Exam

Copyright © 2026 TroytecDumps NETWORK CO.,LIMITED. All Rights Reserved. All trademarks used are properties of their respective owners. Privacy Policy

Disclaimer:
TroytecDumps doesn't offer Real CompTIA Exam Questions.
Oracle and Java are registered trademarks of Oracle and/or its affiliates
TroytecDumps material do not contain actual actual Oracle Exam Questions or material.
TroytecDumps doesn't offer Real Microsoft Exam Questions.
Microsoft®, Azure®, Windows®, Windows Vista®, and the Windows logo are registered trademarks of Microsoft Corporation
TroytecDumps Materials do not contain actual questions and answers from Cisco's Certification Exams. The brand Cisco is a registered trademark of CISCO, Inc
CFA Institute does not endorse, promote or warrant the accuracy or quality of these questions. CFA® and Chartered Financial Analyst® are registered trademarks owned by CFA Institute.
TroytecDumps.com does not offer exam dumps or questions from actual exams. We offer learning material and practice tests created by subject matter experts to assist and help learners prepare for those exams. All certification brands used on the website are owned by the respective brand owners. TroytecDumps does not own or claim any ownership on any of the brands.