Exam Code: 156-115.77 (Practice Exam Latest Test Questions VCE PDF)
Exam Name: Check Point Certified Security Master
Certification Provider: Check Point
Free Today! Guaranteed Training- Pass 156-115.77 Exam.
Q17. - (Topic 5)
What command should a firewall administrator use to begin debugging SecureXL?
A. fwaccel dbg api + verbose add
B. fwaccel debug –m <module name> <flag>
C. fwaccel dbg -m <module name> <flag>
D. SecureXL cannot be dubugged and the kernel debug will give enough output to help the firewall administrator to understand the firewalls behaviour. The right command to use is fw ctl debug –m fw.
Answer: C
Q18. - (Topic 5)
What is the command to check how many connections the firewall has detected for the SecureXL device?
A. fw tab –t connections –s
B. fw tab -t cphwd_db –s
C. fw tab –t connection –s | grep template
D. fwaccel conns
Answer: B
Q19. - (Topic 9)
OF the following, which is NOT a kernel parameter relating to the IPS “Bypass Under Load” settings:
A. ids_timeout
B. ids_tolerance_no_stress
C. ids_assume_stress
D. ids_limit_stress
Answer: D
Q20. - (Topic 11)
The current release of Check Point R77, what is a potential performance-related drawback to using Virtual Tunnel Interfaces (VTI) rather than Domain-based VPNs?
A. Use of VTIs will disable CoreXL and therefore will negatively impact hardware platforms running more than one CPU core.
B. Dynamic routing protocols will work across a domain-based VPN, but will not work across a VTI.
C. Use of VTIs will disable the entire SecureXL mechanism and prevent any traffic acceleration.
D. Domain-based VPNs are easier to configure than VTIs and therefore is the preferred implementation.
Answer: A
Q21. - (Topic 3)
Which is NOT a valid upgrade method in an R77 GAiA ClusterXL deployment?
A. Optimal Service Upgrade
B. Full Connectivity Upgrade
C. Minimal Effort Upgrade
D. Automatic Incremental Upgrade
Answer: D
Q22. - (Topic 1)
The command _____________ shows which firewall chain modules are active on a gateway.
A. fw stat
B. fw ctl debug
C. fw ctl chain
D. fw ctl multik stat
Answer: C
Q23. - (Topic 9)
When the IPS ‘Bypass under Load’ mechanism detects that the certain CPU and memory usage thresholds have been reached, which of the following occurs?
A. The mechanism configures all IPS protections in ‘Detect Mode’
B. IPS is disabled completely
C. The mechanism disables all IPS protections by placing them under ‘exception’
D. Stateful Inspection is disabled
Answer: C
Q24. - (Topic 7)
In a ClusterXL cluster with delayed synchronization, which of the following is not true?
A. The length of time for the delay can be edited.
B. It applies only to TCP services whose Protocol Type is set to HTTP or None.
C. Delayed Synchronization is disabled if the Track option in the rule is set to Log or Account.
D. Delayed Synchronization is performed only for connections matching a SecureXL Connection Template.
Answer: A