Exam Code: 156-215.77 (Practice Exam Latest Test Questions VCE PDF)
Exam Name: Check Point Certified Security Administrator – GAiA
Certification Provider: Check Point
Free Today! Guaranteed Training- Pass 156-215.77 Exam.
2021 Aug 156-215.77 exam answers
Q1. - (Topic 2)
What CANNOT be configured for existing connections during a policy install?
A. Reset all connections
B. Re-match connections
C. Keep all connections D. Keep data connections
Answer: A
Q2. - (Topic 2)
You receive a notification that long-lasting Telnet connections to a mainframe are dropped
after an hour of inactivity. Reviewing SmartView Tracker shows the packet is dropped with the error:
“Unknown established connection”
How do you resolve this problem without causing other security issues? Choose the BEST answer.
A. Increase the service-based session timeout of the default Telnet service to 24-hours.
B. Increase the TCP session timeout under Global Properties > Stateful Inspection.
C. Create a new TCP service object on port 23 called Telnet-mainframe. Define a service-based session timeout of 24-hours. Use this new object only in the rule that allows the Telnet connections to the mainframe.
D. Ask the mainframe users to reconnect every time this error occurs.
Answer: C
Q3. - (Topic 1)
Message digests use which of the following?
A. SHA-1 and MD5
B. IDEA and RC4
C. SSL and MD4
D. DES and RC4
Answer: A
Q4. - (Topic 2)
Which NAT option applicable for Automatic NAT applies to Manual NAT as well?
A. Translate destination on client-side
B. Enable IP Pool NAT
C. Allow bi-directional NAT
D. Automatic ARP configuration
Answer: A
Q5. - (Topic 1)
When restoring R77 using the command upgrade_import, which of the following items are NOT restored?
A. Licenses
B. SIC Certificates
C. Global properties
D. Route tables
Answer: D
Latest 156-215.77 practice test:
Q6. - (Topic 3)
True or FalsE. SmartView Monitor can be used to create alerts on a specified Gateway.
A. True, by right-clicking on the Gateway and selecting Configure Thresholds.
B. True, by choosing the Gateway and selecting System Information.
C. False, an alert cannot be created for a specified Gateway.
D. False, alerts can only be set in SmartDashboard Global Properties.
Answer: A
Q7. - (Topic 3)
Which rule is responsible for the installation failure? A. Rule 3
B. Rule 4
C. Rule 5
D. Rule 6
Answer: D
Q8. - (Topic 1)
The customer has a small Check Point installation which includes one Windows 7 workstation as the SmartConsole, one GAiA device working as Security Management Server, and a third server running SecurePlatform as Security Gateway. This is an example of a(n):
A. Unsupported configuration
B. Stand-Alone Installation
C. Hybrid Installation
D. Distributed Installation
Answer: D
Q9. - (Topic 1)
You intend to upgrade a Check Point Gateway from R71 to R77. Prior to upgrading, you want to back up the Gateway should there be any problems with the upgrade. Which of the following allows for the Gateway configuration to be completely backed up into a manageable size in the least amount of time?
A. upgrade_export
B. snapshot
C. backup
D. database revision
Answer: C
Q10. - (Topic 3)
How do you configure the Security Policy to provide user access to the Captive Portal through an external (Internet) interface?
A. Change the Identity Awareness settings under Global Properties to allow Captive Portal access on all interfaces.
B. Change the Identity Awareness settings under Global Properties to allow Captive Portal access for an external interface.
C. Change the gateway settings to allow Captive Portal access via an external interface.
D. No action is necessary. This access is available by default.
Answer: C
351. - (Topic 3)
For remote user authentication, which authentication scheme is NOT supported?
A. Check Point Password
B. TACACS
C. SecurID
D. RADIUS
Answer: B