Check Point Certified Security Administrator R71 (156-215-71) Free Practice Test

Question 1

You need to plan the company's new security system. The company needs a very high level of security and also high performance and high throughput for their applications. You need to turn on most of the integrated IPS checks while maintaining high throughput. What would be the BEST solution for this scenario?

A. Bad luck, both together can not be achieved.

B. The IPS does not run when CoreXL is enabled.

C. The IPS system does not affect the firewall performance and CoreXL is not needed in this scenario.

D. You need to buy a strong multi-core machine and run R70 or later on SecurePlatform with CoreXL technology enabled.

Correct Answer: D

Question 2

You are creating an output file with the following command: fw monitor -e "accept (src=10.20.30.40 or dst=10.20.30.40);" -o ~/output
Which tool do you use to analyze this file?

A. You can analyze the output file with any ASCI editor.

B. You can analyze it with Wireshark or Ethereal.

C. The output file format is CSV, so you can use MS Excel to analyze it.

D. You cannot analyze it with any tool as the syntax should be:fw monitor -e accept ([12,b]=10.20.30.40 or [16,b]=10.20.30.40); -o ~/output.

Correct Answer: B

Question 3

Secure Internal Communications (SIC) is completely NAT-tolerant because it is based on:

A. MAC addresses.

B. SIC names.

C. SIC is not NAT-tolerant.

D. IP addresses.

Correct Answer: B

Question 4

Which Security Servers can perform authentication tasks, but CANNOT perform content security tasks?

A. HTTPS

B. FTP

C. HTTP

D. Telnet

Correct Answer: D

Question 5

In the given Rule Base, the client authentication in rule 4 is configured as fully automatic. Eric is a member of the LDAP group, MSAD_Group. When Eric tries to connect to a server on the Internet, what will happen?

A. None of these things will happen.

B. Eric will be blocked because LDAP is not allowed in the Rule Base.

C. Eric will be authenticated and get access to the requested server.

D. Eric will be blocked by the Stealth Rule.

Correct Answer: A

Question 6

Which of the following describes the default behavior of an R71 Security Gateway?

A. Traffic not explicitly permitted is dropped.

B. Traffic is filtered using controlled port scanning.

C. IP protocol types listed as secure are allowed by default, i.e. ICMP, TCP, UDP sessions are inspected.

D. All traffic is expressly permitted via explicit rules.

Correct Answer: A

Question 7

You are running the Security Gateway on SecurePlatform and configure SNX with default settings. The client fails to connect to the Security Gateway. What is wrong?

A. The routing table on the client does not get modified.

B. The SecurePlatform Web User Interface is listening on port 443.

C. The client has Active-X blocked.

D. The client is configured incorrectly.

Correct Answer: B

Question 8

What is the primary benefit of using upgrade_export over either backup of snapshot?

A. The backup and snapshot commands can take long time to run whereas upgrade_export will take a much shorter amount of time.

B. upgrade_export is operating system independent and can be used when backup or snapshot is not available.

C. upgrade_export has an option to backup the system and SmartView tracker logs while back and snapshot will not.

D. upgrade_export will back up routing tables, hosts files, and manual ARP configurations, where backup and snapshot will not.

Correct Answer: B

Question 9

How would you create a temporary user bypass to the URL Filtering policy in Security Gateway?

A. By creating an authentication rule in the Firewall

B. By adding an exception in URL Filtering / Advanced I Network Exceptions

C. It is not possible

D. By enabling it in URL Filtering /Advanced / Bypass

Correct Answer: C

Question 10

In a Hide NAT connection outbound, which portion of the packet is modified?

A. Destination IP address and destination port

B. Source IP address and source port

C. Source IP address and destination port

D. Destination IP address and destination port

Correct Answer: B

Question 11

Amy is unsure that her nightly backup configured from the Check Point backup tool is working. If she logged into her Gateway using SSH, in which directory would she find her nightly backups?

A. /backups

B. /var/CPbackup/backups

C. /var/backups

D. /opt/backups

Correct Answer: B

Welcome to TestSimulate

CheckPoint Check Point Certified Security Administrator R71 (156-215-71) Free Practice Test