Examcollection offers free demo for 156-115.77 exam. "Check Point Certified Security Master", also known as 156-115.77 exam, is a Check Point Certification. This set of posts, Passing the Check Point 156-115.77 exam, will help you answer those questions. The 156-115.77 Questions & Answers covers all the knowledge points of the real exam. 100% real Check Point 156-115.77 exams and revised by experts!
Q121. - (Topic 11)
Which feature is not supported with unnumbered VTI?
A. Proxy interfaces
B. High availability
C. Policy based routing
D. Anti-spoofing
Answer: D
Q122. - (Topic 3)
How can you see a dropped connection and the cause from the kernel?
A. fw zdebug drop
B. fw ctl debug drop on
C. fw debug drop on
D. fw ctl zdebug drop
Answer: D
Q123. - (Topic 4)
You are setting up VPN between two gateways Local-GW and New-GW and want to use shared secret. For some reason New-GW is not showing up in the shared secret properties under mesh community properties. What is the most likely reason why the New-GW is not displayed?
A. Gateway is locally managed by the same management station as Local-GW and shared secret is not supported for this configuration
B. New-GW has to have Advanced properties > shared secret enabled.
C. You need to install database by selecting Policy > Install database before gateway can be added.
D. Gateway is 600 appliance and does not support “shared secret” option.
Answer: A
Q124. - (Topic 3)
What would be a reason to use the command cphaosu stat?
A. To determine the number of connections from OPSEC software using Open Source Licenses.
B. To decide when to fail over traffic to a new cluster member.
C. This is not a valid command.
D. To see the policy install dates on each of the members in the cluster.
Answer: B
Q125. - (Topic 4)
Your company has recently decided to allow remote access for clients. You find that no one is able to connect, although you are confident that your rule set and remote access community has been defined correctly. What is the most likely cause, based on the options below? You have the following debug file: A. RDP is being blocked upstream.
B. You have selected IKEv2 only in Global Properties > Remote Access > VPN – Authentication and Encryption.
C. Remote access clients are all behind NAT devices.
D. Implied rule is not set to accept control connections.
Answer: B
Q126. - (Topic 7)
When a cluster member is completely powered down, how will the other member identify if there is network connectivity?
A. The working member will ARP for the default gateway.
B. The working member will look for replies to traffic sent from internal hosts.
C. The working member will automatically assume connectivity.
D. The working member will Ping IPs in the subnet until it gets a response.
Answer: D
Q127. - (Topic 4)
Which program could you use to analyze Phase I and Phase II packet exchanges?
A. vpnView
B. Check PointView
C. IKEView
D. vpndebugView
Answer: C
Q128. - (Topic 5)
Certain rules will disable connection rate acceleration (templates) in the Rule Base. What command should be used to determine on what rule templates are disabled?
A. cpconfig
B. cphaprob -a if
C. fw ctl pstat
D. fwaccel stat
Answer: D
122. - (Topic 5)
The command fwaccel stat displays what information?
A. Accelerator status, accept templates, drop templates
B. Accelerated packets, accept templates, dropped packets
C. Accelerator status, accelerated rules, drop templates
D. Accelerator status, CoreXL state, drop templates
Answer: A