Pass4itsure > CheckPoint > CheckPoint Certification > 156-915.65 > 156-915.65 Online Practice Questions and Answers

156-915.65 Online Practice Questions and Answers

Questions 4

What must a public hospital Security Administrator do to comply with new health-care legislation requirements for logging all traffic accepted through the perimeter Security Gateway?

A. Define two log servers on the VPN-1 NGX R65 Gateway object. Enable "Log Implied Rules" on the first log server. Enable "Log Rule Base" on the second log server. Use Eventia Reporter to merge the two log server records into the same database for HIPPA log audits.

B. Install the "View Implicit Rules" package using SmartUpdate.

C. In Global Properties > Reporting Tools check the box "Enable tracking all rules (including rules marked as 'None' in the Track column). Send these logs to a secondary log server for a complete logging history. Use your normal log server for standard logging for troubleshooting.

D. Check the "Log Implied Rules Globally" box on the VPN-1 NGX R65 Gateway object.

Buy Now
Questions 5

Which of the following is the most critical step in a SmartCenter Server NGX R65 backup strategy?

A. Perform a full system tape backup of both the SmartCenter and Security Gateway machines.

B. Run the cpstop command prior to running the upgrade_export command

C. Using the upgradejmport command, attempt to restore the SmartCenter Server to a non- production system

D. Move the *.tgz upgrade_export file to an off site location via ftp.

Buy Now
Questions 6

Which SmartView Tracker mode allows you to read the SMTP email body sent from the Chief Executive Officer (CEO)?

A. Log Tab

B. Display Capture Action

C. This is not a SmartView Tracker feature

D. Account Query

Buy Now
Questions 7

Your online bookstore has customers connecting to a variety of Web servers to place or change orders, and check order status. You ran penetration tests through the Security Gateway, to determine if the Web servers were protected from a recent series of cross-site scripting attacks. The penetration testing indicated the Web servers were still vulnerable. You have checked every box in the Web Intelligence tab, and installed the Security Policy. What else might you do to reduce the vulnerability?

A. Configure the Security Gateway protecting the Web servers as a Web server.

B. Check the "Products > Web Server" box on the host node objects representing your Web servers.

C. Configure resource objects as Web servers, and use them in the rules allowing HTTP traffic to the Web servers.

D. The penetration software you are using is malfunctioning and is reporting a false- positive.

Buy Now
Questions 8

You are preparing computers for a new ClusterXL deployment. For your cluster, you plan to use three machines with the following configurations:Are these machines correctly configured for a ClusterXL deployment?

A. No, all machines in a cluster must be running on the same OS.

B. Yes, these machines are configured correctly for a ClusterXL deployment.

C. No, QuadCards are not supported with ClusterXL.

D. No, a cluster may only have two members.

Buy Now
Questions 9

What physical machine must have access to the User Center public IP when checking for new packages with SmartUpdate?

A. SmartUpdate installed SmartCenter Server PC

B. SmartUpdate GUI PC

C. VPN-1 Security Gateway getting the new upgrade package

D. SmartUpdate Repository SQL database Server

Buy Now
Questions 10

Where do you enable popup alerts for SmartDefense settings that have detected suspicious activity?

A. In SmartView Monitor, select Tools > Alerts

B. In SmartView Tracker, select Tools > Custom Commands C In SmartDashboard, edit the Gateway object, select SmartDefense > Alerts

C. In SmartDashboard, select Global Properties > Log and Alert > Alert Commands

Buy Now
Questions 11

Your organization has many VPN-1 Edge Gateways at various branch offices, to allow users to access company resources. For security reasons, your organization's Security Policy requires all Internet traffic initiated behind the VPN-1 Edge Gateways first be inspected by your headquarters' VPN-1 Pro Security Gateway. How do you configure VPN routing in this star VPN Community?

A. To the Internet and other targets only

B. To the center and other satellites, through the center

C. To the center; orthrougnthe center to other satellites, then to the Internet and other VPN targets

D. To the center only

Buy Now
Questions 12

The Check Point Security Gateway's virtual machine (kernel) exists between which two layers of the OSI model?

A. Physical and Data Link layers

B. Application and Presentation layers

C. Network and Data Link layers

D. Session and Network layers

Buy Now
Questions 13

When configuring VPN High Availability (HA) with MEP, which of the following is correct?

A. The decision on which MEP Security Gateway to use is made on the remote gateway's side (non-MEP side).

B. MEP Gateways must be managed by the same SmartCenter Server.

C. MEP VPN Gateways cannot be geographically separated machines.

D. If one Gateway fails, the synchronized connection fails over to another Gateway and the connection continues

Buy Now
Exam Code: 156-915.65
Exam Name: Accelerated CCSE NGX R65
Last Update:
Questions: 204
10%OFF Coupon Code: SAVE10

PDF (Q&A)

$45.99

VCE

$49.99

PDF + VCE

$59.99