Checkpoint 156-215.77 - Check Point Certified Security Administrator Exam
Page: 2 / 72
Total 358 questions
Question #6 (Topic: Topic 1)
By default, when you click File > Switch Active File in SmartView Tracker, the Security
Management Server:
Management Server:
A. Saves the current log file, names the log file by date and time, and starts a new log file.
B. Purges the current log file, and starts a new log file.
C. Prompts you to enter a filename, and then saves the log file.
D. Purges the current log file, and prompts you for the new log’s mode.
Answer: A
Question #7 (Topic: Topic 1)
While in SmartView Tracker, Brady has noticed some very odd network traffic that he
thinks could be an intrusion. He decides to block the traffic for 60 minutes, but cannot
remember all the steps. What is the correct order of steps needed to set up the block?
1) Select Active Mode tab in SmartView Tracker.
2) Select Tools > Block Intruder.
3) Select Log Viewing tab in SmartView Tracker.
4) Set Blocking Timeout value to 60 minutes.
5) Highlight connection that should be blocked.
thinks could be an intrusion. He decides to block the traffic for 60 minutes, but cannot
remember all the steps. What is the correct order of steps needed to set up the block?
1) Select Active Mode tab in SmartView Tracker.
2) Select Tools > Block Intruder.
3) Select Log Viewing tab in SmartView Tracker.
4) Set Blocking Timeout value to 60 minutes.
5) Highlight connection that should be blocked.
A. 1, 2, 5, 4
B. 3, 2, 5, 4
C. 1, 5, 2, 4
D. 3, 5, 2, 4
Answer: C
Question #8 (Topic: Topic 1)
You are responsible for the configuration of MegaCorps Check Point Firewall. You need to
allow two NAT rules to match a connection. Is it possible? Give the BEST answer.
allow two NAT rules to match a connection. Is it possible? Give the BEST answer.
A. No, it is not possible to have more than one NAT rule matching a connection. When the firewall receives a packet belonging to a connection, it compares it against the first rule in the Rule Base, then the second rule, and so on. When it finds a rule that matches, it stops checking and applies that rule.
B. Yes, it is possible to have two NAT rules which match a connection, but only in using Manual NAT (bidirectional NAT).
C. Yes, there are always as many active NAT rules as there are connections.
D. Yes, it is possible to have two NAT rules which match a connection, but only when using Automatic NAT (bidirectional NAT).
Answer: D
Question #9 (Topic: Topic 1)
How do you view a Security Administrator's activities with SmartConsole?
A. Eventia Suite
B. SmartView Monitor using the Administrator Activity filter
C. SmartView Tracker in the Management tab
D. SmartView Tracker in the Network and Endpoint tabs
Answer: C
Question #10 (Topic: Topic 1)
In SmartDashboard, Translate destination on client side is checked in Global Properties.
When Network Address Translation is used:
When Network Address Translation is used:
A. It is not necessary to add a static route to the Gateway’s routing table.
B. It is necessary to add a static route to the Gateway’s routing table.
C. The Security Gateway’s ARP file must be modified.
D. VLAN tagging cannot be defined for any hosts protected by the Gateway.
Answer: A
