Which definition best describes the file table.def function? It is a placeholder for:
Answer : A
Extended Cluster Anti-Spoofing checks what value to determine if a packet with the source
IP of a gateway in the cluster is being spoofed?
Answer : B
Each connection allowed by a Security Gateway, will have a real entry and some symbolic link entries in the connections state table. The symbolic link entries point back to the real entry using this:
Answer : B
Explanation:
C3O3 - ClusterXL -
After creating and pushing out a new policy, Joe finds that an old connection is still being allowed that should have been closed after his changes. He wants to delete the connection on the gateway, and looks it up with fw tab t connections u. Joe finds the connection he is looking for. What command should Joe use to remove this connection?
<0,a128c22,89,a158508,89,11;10001,2281,25,15b,a1,4ecdfeee,ac,691400ac,7b6,3e,ffffffff,
3c,3c,0,0,0,0,0,0,0,0,0,0,0,0,0,0>
Answer : B
How can you see a dropped connection and the cause from the kernel?
Answer : D
How do you clear the connections table?
Answer : A
Your cluster member is showing a state of "Ready". Which of the following is NOT a reason one would expect for this behaviour?
Answer : D
Your customer has an R77 Multi-domain Management Server managing a mix of firewalls of R70 and R77 versions. A change was made to the file $FWDIR/lib/tables.def on one of the domains. However, it was found that the change was not applied to the R70 firewalls.
What could be the problem?
Answer : D
Of the following answer choices, which best describes a possible effect of expanding the connections table?
Answer : A
Which command should you use to stop kernel module debugging (excluding SecureXL)?
Answer : A
Using the default values in R77 how many kernel instances will there be on a 16-core gateway?
Answer : D
Your customer reports that the time on the standby cluster member is not correct. After failing over and making it active, the time is now correct. NTP has been configured on both machines, so it is expected that both machines be in sync with the NTP server. Upon investigating, it was found that the standby member was never able to communicate with the NTP server while it was in standby configuration. What could be the problem?
Answer : C
Which command should you run to debug the VPN-1 kernel module?
Answer : D
Which command would a troubleshooter use to verify table connection info (peak, concurrent) and verify information about cluster synchronization state?
Answer : D