Our pass rate is high to 98.9% and the similarity percentage between our ccsa 156 215.77 study guide and real exam is 90% based on our seven-year educating experience. Do you want achievements in the Check Point exam 156 215.77 exam in just one try? I am currently studying for the Check Point checkpoint 156 215.77 exam. Latest Check Point ccsa 156 215.77 Test exam practice questions and answers, Try Check Point exam 156 215.77 Brain Dumps First.
Q217. - (Topic 2)
You have created a Rule Base for firewall, websydney. Now you are going to create a new policy package with security and address translation rules for a second Gateway.
What is TRUE about the new package's NAT rules?
A. NAT rules will be empty in the new package.
B. Rules 4 and 5 will appear in the new package.
C. Rules 1, 2, 3 will appear in the new package.
D. Only rule 1 will appear in the new package.
Answer: C
Q218. - (Topic 3)
As you review this Security Policy, what changes could you make to accommodate Rule 4?
A. Modify the columns Source or Destination in Rule 4.
B. Remove the service HTTP from the column Service in Rule 4.
C. Modify the column VPN in Rule 2 to limit access to specific traffic.
D. Nothing at all
Answer: C
Q219. - (Topic 3)
Which R75 component displays the number of packets accepted, rejected, and dropped on a specific Security Gateway, in real time?
A. SmartView Monitor
B. SmartView Status
C. SmartEvent
D. SmartUpdate
Answer: A
Q220. - (Topic 3)
What is the purpose of an Identity Agent?
A. Manual entry of user credentials for LDAP authentication
B. Audit a user's access, and send that data to a log server
C. Disable Single Sign On
D. Provide user and machine identity to a gateway
Answer: D
Q221. - (Topic 3)
As a Security Administrator, you must refresh the Client Authentication authorization time-out every time a new user connection is authorized. How do you do this? Enable the Refreshable Timeout setting:
A. in the user object's Authentication screen.
B. in the Gateway object's Authentication screen.
C. in the Global Properties Authentication screen.
D. in the Limit tab of the Client Authentication Action Properties screen.
Answer: D
Q222. - (Topic 1)
The London Security Gateway Administrator has just installed the Security Gateway and Management Server. He has not changed any default settings. As he tries to configure the Gateway, he is unable to connect. Which troubleshooting suggestion will NOT help him?
A. Check if some intermediate network device has a wrong routing table entry, VLAN
assignment, duplex-mismatch, or trunk issue.
B. Verify that the Rule Base explicitly allows management connections.
C. Test the IP address assignment and routing settings of the Security Management Server, Gateway, and console client.
D. Verify the SIC initialization.
Answer: B
Q223. - (Topic 2)
Which statement is TRUE about implicit rules?
A. You create them in SmartDashboard.
B. The Gateway enforces implicit rules that enable outgoing packets only.
C. Changes to the Security Gateway's default settings do not affect implicit rules.
D. They are derived from Global Properties and explicit object properties.
Answer: D
Q224. - (Topic 2)
You are working with three other Security Administrators. Which SmartConsole component can be used to monitor changes to rules or object properties made by the other administrators?
A. Eventia Tracker
B. SmartView Monitor
C. Eventia Monitor
D. SmartView Tracker
Answer: D