156-215.77 Royal Pack Testengine pdf
100% Actual & Verified — 100% PASS
Unlimited access to the world's largest Dumps library!Download 156-215.77 Dumps Free
Exam Number/Code: 156-215.77
Exam name: Check Point Certified Security Administrator – GAiA
n questions with full explanations
Certification: Check Point Certification
It is more faster and easier to pass the Check Point exam 156 215.77 exam by using Highest Quality Check Point Check Point Certified Security Administrator – GAiA questuins and answers. Immediate access to the Improved ccsa 156 215.77 Exam and find the same core area checkpoint 156 215.77 questions with professionally verified answers, then PASS your exam with a high score now.
Q121. - (Topic 2)
In a distributed management environment, the administrator has removed all default check boxes from the Policy > Global Properties > Firewall tab. In order for the Security Gateway to send logs to the Security Management Server, an explicit rule must be created to allow the Security Gateway to communicate to the Security Management Server on port ______.
Q122. - (Topic 3)
Which of the following is NOT defined by an Access Role object?
A. Source Network
B. Source User
C. Source Machine
D. Source Server
Q123. - (Topic 2)
In SmartDashboard, Translate destination on client side is checked in Global Properties. When Network Address Translation is used:
A. VLAN tagging cannot be defined for any hosts protected by the Gateway.
B. The Security Gateway's ARP file must be modified.
C. It is not necessary to add a static route to the Gateway's routing table.
D. It is necessary to add a static route to the Gateway's routing table.
Q124. - (Topic 3)
Which of the following authentication methods can be configured in the Identity Awareness setup wizard?
B. Check Point Password
C. Windows password
Q125. - (Topic 3)
Your company's Security Policy forces users to authenticate to the Gateway explicitly, before they can use any services. The Gateway does not allow the Telnet service to itself from any location. How would you configure authentication on the Gateway? With a:
A. Client Authentication rule using the manual sign-on method, using HTTP on port 900
B. Client Authentication rule, using partially automatic sign on
C. Client Authentication for fully automatic sign on
D. Session Authentication rule
Q126. - (Topic 2)
Looking at the SYN packets in the Wireshark output,
select the statement that is true about NAT.
A. This is an example of Hide NAT.
B. This is an example of Static NAT and Translate destination on client side unchecked in Global Properties.
C. There is not enough information provided in the Wireshark capture to determine the NAT settings.
D. This is an example of Static NAT and Translate destination on client side checked in Global Properties.
Q127. - (Topic 3)
What statement is true regarding Visitor Mode?
A. All VPN traffic is tunneled through UDP port 4500.
B. VPN authentication and encrypted traffic are tunneled through port TCP 443.
C. Only ESP traffic is tunneled through port TCP 443.
D. Only Main mode and Quick mode traffic are tunneled on TCP port 443.
Q128. - (Topic 3)
What gives administrators more flexibility when configuring Captive Portal instead of LDAP query for Identity Awareness authentication?
A. Captive Portal is more secure than standard LDAP
B. Captive Portal is more transparent to the user
C. Nothing, LDAP query is required when configuring Captive Portal
D. Captive Portal works with both configured users and guests
Q129. - (Topic 3)
In SmartView Tracker, which rule shows when a packet is dropped due to anti-spoofing?
A. Rule 0
B. Blank field under Rule Number
C. Cleanup Rule
D. Rule 1
Q130. - (Topic 3)
Which authentication type requires specifying a contact agent in the Rule Base?
A. Session Authentication
B. User Authentication
C. Client Authentication with Partially Automatic Sign On
D. Client Authentication with Manual Sign On
[TRY FREE] BUY 156-215.77 Full version( pdf+software ):