Welcome to TestSimulate

Pass Your Next Certification Exam Fast!

Everything you need to prepare, learn & pass your certification exam easily.

365 days free updates. First attempt guaranteed success.

  • Home
  • Blogs
  • Get New 2021 Valid Practice CCSA R80 156-215.80 Q&A - Testing Engine [Q309-Q327]

Get New 2021 Valid Practice CCSA R80 156-215.80 Q&A - Testing Engine [Q309-Q327]

Share

Get New 2021 Valid Practice CCSA R80 156-215.80 Q&A - Testing Engine

156-215.80 Dumps PDF - 100% Passing Guarantee


The benefit in Obtaining the 156-215.80 Exam Certification

  • Gain employer recognition for promotions and raises
  • This 156-215.80 exam covers a different technology to meet the needs of varying job roles
  • Capture the attention of recruiters
  • Score CP job opportunities

What is the duration of the 156-215.80 Exam

  • Length of Examination: 90 minutes
  • Format: Multiple choices, multiple answers
  • Number of Questions: 100
  • Passing Score: 70%

 

NEW QUESTION 309
Jack works for a managed service provider and he has been tasked to create 17 new policies for several new customers. He does not have much time. What is the BEST way to do this with R80 security management?

  • A. Create a text-file with DBEDIT script that creates all objects and policies. Run the file in the command line of the management server using command dbedit -f.
  • B. Create a text-file with mgmt_cliscript that creates all objects and policies. Open the file in SmartConsole Command Line to run it.
  • C. Create a text-file with Gaia CLI -commands in order to create all objects and policies. Run the file in CLISH with command load configuration.
  • D. Use Object Explorer in SmartConsole to create the objects and Manage Policies from the menu to create the policies.

Answer: B

Explanation:
Explanation/Reference:
Explanation: Did you know: mgmt_cli can accept csv files as inputs using the --batch option.
The first row should contain the argument names and the rows below it should hold the values for these parameters.
So an equivalent solution to the powershell script could look like this:
data.csv:

mgmt_cli add host --batch data.csv -u <username> -p <password> -m <management server> This can work with any type of command not just "add host" : simply replace the column names with the ones relevant to the command you need.
Reference: https://community.checkpoint.com/thread/1342
https://sc1.checkpoint.com/documents/R80/APIs/#gui-cli/add-access-rule

 

NEW QUESTION 310
Which Threat Prevention Software Blade provides protection from malicious software that can infect your network computers?

  • A. Anti-bot
  • B. IPS
  • C. Anti-Malware
  • D. Anti-Spam

Answer: A

Explanation:
Anti-Bot
The Need for Anti-Bot
There are two emerging trends in today's threat landscape:
* A profit-driven cybercrime industry that uses different tools to meet its goals. This industry includes cyber-criminals, malware operators, tool providers, coders, and affiliate programs. Their "products" can be easily ordered online from numerous sites (for example, do-it-yourself malware kits, spam sending, data theft, and denial of service attacks) and organizations are finding it difficult to fight off these attacks.
* Ideological and state driven attacks that target people or organizations to promote a political cause or carry out a cyber-warfare campaign.
Both of these trends are driven by bot attacks.
A bot is malicious software that can invade your computer. There are many infection methods. These include opening attachments that exploit a vulnerability and accessing a web site that results in a malicious download.
Reference: https://sc1.checkpoint.com/documents/R77/
CP_R77_ThreatPrevention_WebAdmin/102176.htm

 

NEW QUESTION 311
The R80 SmartConsole, SmartEvent GUI client, and _______ consolidate billions of logs and shows them as prioritized security events.

  • A. SmartTracker
  • B. SmartView Web Application
  • C. SmartReporter
  • D. SmartMonitor

Answer: B

Explanation:
Event Analysis with SmartEvent
The SmartEvent Software Blade is a unified security event management and analysis solution that delivers real-time, graphical threat management information. SmartConsole, SmartView Web Application, and the SmartEvent GUI client consolidate billions of logs and show them as prioritized security events so you can immediately respond to security incidents, and do the necessary actions to prevent more attacks. You can customize the views to monitor the events that are most important to you. You can move from a high level view to detailed forensic analysis in a few clicks. With the free-text search and suggestions, you can quickly run data analysis and identify critical security events.
Reference: https://sc1.checkpoint.com/documents/R80/CP_R80_LoggingAndMonitoring/html_frameset.htm?
topic=documents/R80/CP_R80_LoggingAndMonitoring/131915

 

NEW QUESTION 312
Kofi, the administrator of the ABC Corp network wishes to change the default Gaia WebUI Portal port number currently set on the default HTTPS port. Which CLISH commands are required to be able to change this TCP port?

  • A. set web ssl-port <new port number>
  • B. set Gaia-portal <new port number>
  • C. set Gaia-portal https-port <new port number>
  • D. set web https-port <new port number>

Answer: A

Explanation:
Explanation
* Explanation: In Clish
* Connect to command line on Security Gateway / each Cluster member.
* Log in to Clish.
* Set the desired port (e.g., port 4434):
HostName> set web ssl-port <Port_Number>
* Save the changes:
HostName> save config
* Verify that the configuration was saved:
[Expert@HostName]# grep 'httpd:ssl_port' /config/db/initialReferences:

 

NEW QUESTION 313
Review the following screenshot and select the BEST answer.

  • A. Data Center Layer is an inline layer in the Access Control Policy.
  • B. If a connection is accepted in Network-layer, it will not be matched against the rules in Data Center Layer.
  • C. If a connection is dropped in Network Layer, it will not be matched against the rules in Data Center Layer.
  • D. By default all layers are shared with all policies.

Answer: C

 

NEW QUESTION 314
What does it mean if Bob gets this result on an object search? Refer to the image below. Choose the BEST answer.

  • A. Search detailed is missing the subnet mask.
  • B. Object does not have a NAT IP address.
  • C. There is no object on the database with that IP address.
  • D. There is no object on the database with that name or that IP address.

Answer: D

 

NEW QUESTION 315
In R80 spoofing is defined as a method of:

  • A. Detecting people using false or wrong authentication logins
  • B. Making packets appear as if they come from an authorized IP address.
  • C. Disguising an illegal IP address behind an authorized IP address through Port Address Translation.
  • D. Hiding your firewall from unauthorized users.

Answer: B

Explanation:
IP spoofing replaces the untrusted source IP address with a fake, trusted one, to hijack connections to your network. Attackers use IP spoofing to send malware and bots to your protected network, to execute DoS attacks, or to gain unauthorized access.

 

NEW QUESTION 316
Fill in the blanks: There are ________ types of software containers ________.

  • A. Three; Security gateway, endpoint security, and gateway management
  • B. Three; security management, Security Gateway, and endpoint security
  • C. Two; endpoint security and Security Gateway
  • D. Two; security management and endpoint security

Answer: B

Explanation:
Explanation/Reference:
Explanation:
There are three types of Software Containers: Security Management, Security Gateway, and Endpoint Security.
Reference:
http://downloads.checkpoint.com/dc/download.htm?ID=11608

 

NEW QUESTION 317
Check Point ClusterXL Active/Active deployment is used when:

  • A. Only when there is Unicast solution set up
  • B. There is High Availability solution set up
  • C. Only when there is Multicast solution set up
  • D. There is Load Sharing solution set up

Answer: B

 

NEW QUESTION 318
Fill in the blank: The command __________ provides the most complete restoration of a R80 configuration.

  • A. cpinfo -recover
  • B. upgrade_import
  • C. cpconfig
  • D. fwm dbimport -p <export file>

Answer: B

Explanation:
Explanation
(Should be "migrate import")
"migrate import" Restores backed up configuration for R80 version, in previous versions the command was " upgrade_import ".

 

NEW QUESTION 319
One of major features in R80 SmartConsole is concurrent administration. Which of the following is NOT possible considering that AdminA, AdminB, and AdminC are editing the same Security Policy?

  • A. A lock icon shows that a rule or an object is locked and will be available.
  • B. AdminA and AdminB are editing the same rule at the same time.
  • C. AdminA, AdminB and AdminC are editing three different rules at the same time.
  • D. A lock icon next to a rule informs that any Administrator is working on this particular rule.

Answer: D

Explanation:
In SmartConsole, administrators work with sessions. A session is created each time an administrator logs into SmartConsole. Changes made in the session are saved automatically. These changes are private and available only to the administrator. To avoid configuration conflicts, other administrators see a lock icon on objects and rules that are being edited in other sessions

 

NEW QUESTION 320
What is the SOLR database for?

  • A. Serves GUI responsible to transfer request to the DLE server
  • B. Writes data to the database and full text search
  • C. Enables powerful matching capabilities and writes data to the database
  • D. Used for full text search and enables powerful matching capabilities

Answer: D

 

NEW QUESTION 321
View the rule below. What does the lock-symbol in the left column mean? Select the BEST answer.

  • A. The current administrator has read-only permissions to Threat Prevention Policy.
  • B. The current administrator is logged in as read-only because someone else is editing the policy.
  • C. Configuration lock is present. Click the lock symbol to gain read-write access.
  • D. Another user has locked the rule for editing.

Answer: D

Explanation:
Explanation
Administrator Collaboration
More than one administrator can connect to the Security Management Server at the same time. Every
administrator has their own username, and works in a session that is independent of the other administrators.
When an administrator logs in to the Security Management Server through SmartConsole, a new editing
session starts. The changes that the administrator makes during the session are only available to that
administrator. Other administrators see a lock icon on object and rules that are being edited.
To make changes available to all administrators, and to unlock the objects and rules that are being edited, the
administrator must publish the session.

 

NEW QUESTION 322
Which information is included in the "Full Log" tracking option, but is not included in the
"Log" tracking option?

  • A. file attributes
  • B. application information
  • C. destination port
  • D. data type information

Answer: D

 

NEW QUESTION 323
In SmartConsole, objects are used to represent physical and virtual network components and also some logical components. These objects are divided into several categories. Which of the following is NOT an objects category?

  • A. Custom Application / Site
  • B. Network Object
  • C. Limit
  • D. Resource

Answer: D

 

NEW QUESTION 324
Which options are given on features, when editing a Role on Gaia Platform?

  • A. Read/Write, Read Only, None
  • B. Read/Write, None
  • C. Read/Write, Read Only
  • D. Read Only, None

Answer: A

Explanation:
Explanation
Roles
Role-based administration (RBA) lets you create administrative roles for users. With RBA, an administrator can allow Gaia users to access specified features by including those features in a role and assigning that role to users. Each role can include a combination of administrative (read/write) access to some features, monitoring (readonly) access to other features, and no access to other features.
You can also specify which access mechanisms (WebUI or the CLI) are available to the user.

Note - When users log in to the WebUI, they see only those features that they have read-only or read/write access to. If they have read-only access to a feature, they can see the settings pages, but cannot change the settings.
Gaia includes these predefined roles:
* adminRole - Gives the user read/write access to all features.
* monitorRole- Gives the user read-only access to all features.
You cannot delete or change the predefined roles.

Note - Do not define a new user for external users. An external user is one that is defined on an authentication server (such as RADIUS or TACACS) and not on the local Gaia system.

 

NEW QUESTION 325
Which command can you use to verify the number of active concurrent connections?

  • A. fw conn all
  • B. show all connections
  • C. fw ctl pst pstat
  • D. show connections

Answer: C

Explanation:
Explanation
References:

 

NEW QUESTION 326
Vanessa is attempting to log into the Gaia Web Portal. She is able to login successfully. Then she tries the same username and password for SmartConsole but gets the message in the screenshot image below. She has checked that the IP address of the Server is correct and the username and password she used to login into Gaia is also correct.

What is the most likely reason?

  • A. Check Point Management software authentication details are not automatically the same as the Operating System authentication details. Check that she is using the correct details.
  • B. Check Point R80 SmartConsole authentication is more secure than in previous versions and Vanessa requires a special authentication key for R80 SmartConsole. Check that the correct key details are used.
  • C. Authentication failed because Vanessa's username is not allowed in the new Threat Prevention console update checks even though these checks passed with Gaia.
  • D. SmartConsole Authentication is not allowed for Vanessa until a Super administrator has logged in first and cleared any other administrator sessions.

Answer: A

 

NEW QUESTION 327
......

156-215.80 Braindumps Real Exam Updated on Dec 09, 2021 with 525 Questions: https://www.testsimulate.com/156-215.80-study-materials.html

Related Blogs

more
Go To 156-215.80 Questions

Copyright © 2026 TESTSIMULATE.COM. All rights reserved. All trademarks are the property of their respective owners and we don't provide actual questions from any vendor.