The Secret of ccsa 156 215.77

156-215.77 Royal Pack Testengine pdf

100% Actual & Verified — 100% PASS

Unlimited access to the world's largest Dumps library!

Download 156-215.77 Dumps Free

Product Description:
Exam Number/Code: 156-215.77
Exam name: Check Point Certified Security Administrator – GAiA
n questions with full explanations
Certification: Check Point Certification

HOW TO GET 156-215.77 Exam PDF Collection Free?

Proper study guides for Latest Check Point Check Point Certified Security Administrator – GAiA certified begins with Check Point 156 215.77 pdf preparation products which designed to deliver the Pinpoint exam 156 215.77 questions by making you pass the 156 215.77 pdf test at your first time. Try the free ccsa 156 215.77 demo right now.

Q111. - (Topic 3) 

Which Security Gateway R77 configuration setting forces the Client Authentication authorization time-out to refresh, each time a new user is authenticated? The: 

A. Time properties, adjusted on the user objects for each user, in the Client Authentication rule Source. 

B. Refreshable Timeout setting, in Client Authentication Action Properties > Limits. 

C. IPS > Application Intelligence > Client Authentication > Refresh User Timeout option enabled. 

D. Global Properties > Authentication parameters, adjusted to allow for Regular Client Refreshment. 

Answer:


Q112. - (Topic 3) 

Which R77 SmartConsole tool would you use to verify the installed Security Policy name on a Security Gateway? 

A. SmartView Monitor 

B. SmartUpdate 

C. SmartView Status 

D. None, SmartConsole applications only communicate with the Security Management Server. 

Answer:


Q113. - (Topic 3) 

As you review this Security Policy, what changes could you make to accommodate Rule 4? 

A. Modify the columns Source or Destination in Rule 4. 

B. Remove the service HTTP from the column Service in Rule 4. 

C. Modify the column VPN in Rule 2 to limit access to specific traffic. 

D. Nothing at all 

Answer:


Q114. - (Topic 1) 

ALL of the following options are provided by the SecurePlatform sysconfig utility, EXCEPT: 

A. Export setup 

B. Time & Date 

C. DHCP Server configuration 

D. GUI Clients 

Answer:


Q115. - (Topic 3) 

Your perimeter Security Gateway’s external IP is 200.200.200.3. Your network diagram shows: 

A. Required. Allow only network 192.168.10.0 and 192.168.20.0 to go out to the Internet, 

using 200.200.200.5. 

The local network 192.168.1.0/24 needs to use 200.200.200.3 to go out to the Internet. 

Assuming you enable all the settings in the NAT page of Global Properties, how could you 

achieve these requirements? 

B. Create network objects for 192.168.10.0/24 and 192.168.20.0/24. Enable Hide NAT on 

both network objects, using 200.200.200.5 as hiding IP address. Add an ARP entry for 

200.200.200.3 for the MAC address of 200.200.200.5. 

C. Create an Address Range object, starting from 192.168.10.1 to 192.168.20.254. Enable 

Hide NAT on the NAT page of the address range object. Enter Hiding IP address 

200.200.200.5. Add an ARP entry for 200.200.200.5 for the MAC address of 

200.200.200.3. 

D. Create a network object 192.168.0.0/16. Enable Hide NAT on the NAT page. Enter 

200.200.200.5 as the hiding IP address. Add an ARP entry for 200.200.200.5 for the MAC 

address of 200.200.200.3. 

Create two network objects: 192.168.10.0/24 and 192.168.20.0/24. Add the two network 

objects to a group object. Create a manual NAT rule like the following: Original source -group object; Destination - any; Service - any; Translated source - 200.200.200.5; 

Destination - original; Service - original. 

Answer:


Q116. - (Topic 2) 

When translation occurs using automatic Hide NAT, what also happens? 

A. The destination port is modified. 

B. Nothing happens. 

C. The destination is modified. 

D. The source port is modified. 

Answer:


Q117. - (Topic 3) 

You believe Phase 2 negotiations are failing while you are attempting to configure a site-to-site VPN with one of your firm’s business partners. Which SmartConsole application should you use to confirm your suspicions? 

A. SmartDashboard 

B. SmartUpdate 

C. SmartView Status 

D. SmartView Tracker 

Answer:


Q118. - (Topic 1) 

Anti-Spoofing is typically set up on which object type? 

A. Network 

B. Security Management object 

C. Host 

D. Security Gateway 

Answer:


Q119. - (Topic 3) 

Where do you verify that UserDirectory is enabled? 

A. Verify that Security Gateway > General Properties > Authentication > Use UserDirectory (LDAP) for Security Gateways is checked 

B. Verify that Global Properties > Authentication > Use UserDirectory (LDAP) for Security Gateways is checked 

C. Verify that Security Gateway > General Properties > UserDirectory (LDAP) > Use UserDirectory (LDAP) for Security Gateways is checked 

D. Verify that Global Properties > UserDirectory (LDAP) > Use UserDirectory (LDAP) for Security Gateways is checked 

Answer:


Q120. - (Topic 2) 

Which of the following is a viable consideration when determining Rule Base order? 

A. Adding SAM rules at the top of the Rule Base 

B. Placing frequently accessed rules before less frequently accessed rules 

C. Grouping rules by date of creation 

D. Grouping IPS rules with dynamic drop rules 

Answer:


[TRY FREE] BUY 156-215.77 Full version( pdf+software ):
https://www.exambible.com/156-215.77-exam/