We offers 156-215.80 Study Guides. "Check Point Certified Security Administrator", also known as 156-215.80 exam, is a Certification. This set of posts, Passing the 156-215.80 exam with 156-215.80 Dumps, will help you answer those questions. The 156-215.80 Braindumps covers all the knowledge points of the real exam. 100% real 156-215.80 Study Guides and revised by experts!

Free demo questions for 156-215.80 Exam Dumps Below:

NEW QUESTION 1
Joey is using the computer with IP address 192.168.20.13. He wants to access web page “www.Check Point.com”, which is hosted on Web server with IP address 203.0.113.111. How many rules on Check Point Firewall are required for this connection?

  • A. Two rules – first one for the HTTP traffic and second one for DNS traffic.
  • B. Only one rule, because Check Point firewall is a Packet Filtering firewall
  • C. Two rules – one for outgoing request and second one for incoming replay.
  • D. Only one rule, because Check Point firewall is using Stateful Inspection technology.

Answer: D

NEW QUESTION 2
You are using SmartView Tracker to troubleshoot NAT entries. Which column do you check to view the NAT'd source port if you are using Source NAT?
156-215.80 dumps exhibit

  • A. XlateDst
  • B. XlateSPort
  • C. XlateDPort
  • D. XlateSrc

Answer: B

NEW QUESTION 3
An internal router is sending UDP keep-alive packets that are being encapsulated with GRE and sent through your R77 Security Gateway to a partner site. A rule for GRE traffic is configured for ACCEPT/LOG. Although the keep-alive packets are being sent every minute, a search through the SmartView Tracker logs for GRE traffic only shows one entry for the whole day (early in the morning after a Policy install).
Your partner site indicates they are successfully receiving the GRE encapsulated keep-alive packets on the 1-minute interval.
If GRE encapsulation is turned off on the router, SmartView Tracker shows a log entry for the UDP keep-alive packet every minute.
Which of the following is the BEST Explanation: for this behavior?

  • A. The setting Log does not capture this level of detail for GR
  • B. Set the rule tracking action to Audit since certain types of traffic can only be tracked this way.
  • C. The log unification process is using a LUUID (Log Unification Unique Identification) that has become corrup
  • D. Because it is encrypted, the R77 Security Gateway cannot distinguish between GRE session
  • E. This is a known issue with GR
  • F. Use IPSEC instead of the non-standard GRE protocol for encapsulation.
  • G. The Log Server log unification process unifies all log entries from the Security Gateway on a specific connection into only one log entry in the SmartView Tracke
  • H. GRE traffic has a 10 minute session timeout, thus each keep-alive packet is considered part of the original logged connection at the beginning of the day.
  • I. The Log Server is failing to log GRE traffic properly because it is VPN traffi
  • J. Disable all VPN configuration to the partner site to enable proper logging.

Answer: C

NEW QUESTION 4
Which of the following is NOT an advantage to using multiple LDAP servers?

  • A. You achieve a faster access time by placing LDAP servers containing the database at remote sites
  • B. Information on a user is hidden, yet distributed across several servers
  • C. You achieve compartmentalization by allowing a large number of users to be distributed across several servers
  • D. You gain High Availability by replicating the same information on several servers

Answer: B

NEW QUESTION 5
A Cleanup rule:

  • A. logs connections that would otherwise be dropped without logging by default.
  • B. drops packets without logging connections that would otherwise be dropped and logged by default.
  • C. logs connections that would otherwise be accepted without logging by default.
  • D. drops packets without logging connections that would otherwise be accepted and logged by default.

Answer: A

NEW QUESTION 6
Which message indicates IKE Phase 2 has completed successfully?

  • A. Quick Mode Complete
  • B. Aggressive Mode Complete
  • C. Main Mode Complete
  • D. IKE Mode Complete

Answer: A

NEW QUESTION 7
Fill in the blank: An identity server uses a ____ for user authentication.

  • A. Shared secret
  • B. Certificate
  • C. One-time password
  • D. Token

Answer: A

NEW QUESTION 8
You want to establish a VPN, using certificates. Your VPN will exchange certificates with an external partner. Which of the following activities sh you do first?

  • A. Create a new logical-server object to represent your partner's CA
  • B. Exchange exported CA keys and use them to create a new server object to represent your partner's Certificate Authority (CA)
  • C. Manually import your partner's Certificate Revocation List.
  • D. Manually import your partner's Access Control List.

Answer: B

NEW QUESTION 9
Which of the following is NOT an option to calculate the traffic direction?

  • A. Incoming
  • B. Internal
  • C. External
  • D. Outgoing

Answer: D

NEW QUESTION 10
You have discovered activity in your network. What is the BEST immediate action to take?

  • A. Create a policy rule to block the traffic.
  • B. Create a suspicious action rule to block that traffic.
  • C. Wait until traffic has been identified before making any changes.
  • D. Contact ISP to block the traffic.

Answer: B

NEW QUESTION 11
Which application should you use to install a contract file?

  • A. SmartView Monitor
  • B. WebUI
  • C. SmartUpdate
  • D. SmartProvisioning

Answer: C

Explanation: Using SmartUpdate: If you already use an NGX R65 (or higher) Security Management / Provider-1 /
Multi-Domain Management Server, SmartUpdate allows you to import the service contract file that you have downloaded in Step #3.
Open SmartUpdate and from the Launch Menu select 'Licenses & Contracts' -> 'Update Contracts' -> 'From File...' and provide the path to the file you have downloaded in Step #3:
156-215.80 dumps exhibit
Note: If SmartUpdate is connected to the Internet, you can download the service contract file directly from the UserCenter without going through the download and import steps.

NEW QUESTION 12
When attempting to start a VPN tunnel, in the logs the error 'no proposal chosen' is seen numerous times. No other VPN-related log entries are present. Which phase of the VPN negotiations has failed?

  • A. IKE Phase 1
  • B. IPSEC Phase 2
  • C. IPSEC Phase 1
  • D. IKE Phase 2

Answer: D

NEW QUESTION 13
After trust has been established between the Check Point components, what is TRUE about name and IP-address changes?

  • A. Security Gateway IP-address cannot be changed without re-establishing the trust
  • B. The Security Gateway name cannot be changed in command line without re-establishing trust
  • C. The Security Management Server name cannot be changed in SmartConsole without re-establishing trust
  • D. The Security Management Server IP-address cannot be changed without re-establishing the trust

Answer: A

NEW QUESTION 14
In order to modify Security Policies the administrator can use which of the following tools? Select the BEST answer.

  • A. Command line of the Security Management Server or mgmt_cli.exe on any Windows computer.
  • B. SmartConsole and WebUI on the Security Management Server.
  • C. mgmt_cli or WebUI on Security Gateway and SmartConsole on the Security Management Server.
  • D. SmartConsole or mgmt_cli on any computer where SmartConsole is installed.

Answer: D

NEW QUESTION 15
What port is used for delivering logs from the gateway to the management server?

  • A. Port 258
  • B. Port 18209
  • C. Port 257
  • D. Port 981

Answer: C

NEW QUESTION 16
Using ClusterXL, what statement is true about the Sticky Decision Function?

  • A. Can only be changed for Load Sharing implementations
  • B. All connections are processed and synchronized by the pivot
  • C. Is configured using cpconfig
  • D. Is only relevant when using SecureXL

Answer: A

100% Valid and Newest Version 156-215.80 Questions & Answers shared by 2passeasy, Get Full Dumps HERE: https://www.2passeasy.com/dumps/156-215.80/ (New 440 Q&As)