Checkpoint 156-585 - Check Point Certified Troubleshooting Expert Exam
Page: 1 / 15
Total 75 questions
Question #1 (Topic: Topic 1)
What are some measures you can take to prevent IPS false positives?
A. Exclude problematic services from being protected by IPS (sip, H.323, etc.)
B. Use IPS only in Detect mode
C. Use Recommended IPS profile
D. Capture packets, Update the IPS database, and Back up custom IPS files
Answer: A
Question #2 (Topic: Topic 1)
VPN issues may result from misconfiguration, communication failure, or incompatible default configurations between peers. Which basic command syntax needs to be used for troubleshooting Site-to-Site VPN issues?
A. vpn debug truncon
B. fw debug truncon
C. cp debug truncon
D. vpn truncon debug
Answer: A
Question #3 (Topic: Topic 1)
What are the maximum kernel debug buffer sizes, depending on the version?
A. 8MB or 32MB
B. 8GB or 64GB
C. 4MB or 8MB
D. 32MB or 64MB
Answer: A
Question #4 (Topic: Topic 1)
Which daemon governs the Mobile Access VPN blade and works with VPND to create Mobile Access VPN connections? It also handles interactions between HTTPS and the Multi-Portal Daemon.
A. Connectra VPN Daemon - cvpnd
B. Mobile Access Daemon - MAD
C. mvpnd
D. SSL VPN Daemon - sslvpnd
Answer: A
Question #5 (Topic: Topic 1)
What does CMI stand for in relation to the Access Control Policy?
A. Content Matching Infrastructure
B. Content Management Interface
C. Context Management Infrastructure
D. Context Manipulation Interface
Answer: C
