156-215.77 Royal Pack Testengine pdf
100% Actual & Verified — 100% PASS
Unlimited access to the world's largest Dumps library!Download 156-215.77 Dumps Free
Exam Number/Code: 156-215.77
Exam name: Check Point Certified Security Administrator – GAiA
n questions with full explanations
Certification: Check Point Certification
Proper study guides for Latest Check Point Check Point Certified Security Administrator – GAiA certified begins with Check Point 156 215.77 pdf preparation products which designed to deliver the Pinpoint exam 156 215.77 questions by making you pass the 156 215.77 pdf test at your first time. Try the free ccsa 156 215.77 demo right now.
Q111. - (Topic 3)
Which Security Gateway R77 configuration setting forces the Client Authentication authorization time-out to refresh, each time a new user is authenticated? The:
A. Time properties, adjusted on the user objects for each user, in the Client Authentication rule Source.
B. Refreshable Timeout setting, in Client Authentication Action Properties > Limits.
C. IPS > Application Intelligence > Client Authentication > Refresh User Timeout option enabled.
D. Global Properties > Authentication parameters, adjusted to allow for Regular Client Refreshment.
Q112. - (Topic 3)
Which R77 SmartConsole tool would you use to verify the installed Security Policy name on a Security Gateway?
A. SmartView Monitor
C. SmartView Status
D. None, SmartConsole applications only communicate with the Security Management Server.
Q113. - (Topic 3)
As you review this Security Policy, what changes could you make to accommodate Rule 4?
A. Modify the columns Source or Destination in Rule 4.
B. Remove the service HTTP from the column Service in Rule 4.
C. Modify the column VPN in Rule 2 to limit access to specific traffic.
D. Nothing at all
Q114. - (Topic 1)
ALL of the following options are provided by the SecurePlatform sysconfig utility, EXCEPT:
A. Export setup
B. Time & Date
C. DHCP Server configuration
D. GUI Clients
Q115. - (Topic 3)
Your perimeter Security Gateway’s external IP is 220.127.116.11. Your network diagram shows:
A. Required. Allow only network 192.168.10.0 and 192.168.20.0 to go out to the Internet,
The local network 192.168.1.0/24 needs to use 18.104.22.168 to go out to the Internet.
Assuming you enable all the settings in the NAT page of Global Properties, how could you
achieve these requirements?
B. Create network objects for 192.168.10.0/24 and 192.168.20.0/24. Enable Hide NAT on
both network objects, using 22.214.171.124 as hiding IP address. Add an ARP entry for
126.96.36.199 for the MAC address of 188.8.131.52.
C. Create an Address Range object, starting from 192.168.10.1 to 192.168.20.254. Enable
Hide NAT on the NAT page of the address range object. Enter Hiding IP address
184.108.40.206. Add an ARP entry for 220.127.116.11 for the MAC address of
D. Create a network object 192.168.0.0/16. Enable Hide NAT on the NAT page. Enter
18.104.22.168 as the hiding IP address. Add an ARP entry for 22.214.171.124 for the MAC
address of 126.96.36.199.
Create two network objects: 192.168.10.0/24 and 192.168.20.0/24. Add the two network
objects to a group object. Create a manual NAT rule like the following: Original source -group object; Destination - any; Service - any; Translated source - 188.8.131.52;
Destination - original; Service - original.
Q116. - (Topic 2)
When translation occurs using automatic Hide NAT, what also happens?
A. The destination port is modified.
B. Nothing happens.
C. The destination is modified.
D. The source port is modified.
Q117. - (Topic 3)
You believe Phase 2 negotiations are failing while you are attempting to configure a site-to-site VPN with one of your firm’s business partners. Which SmartConsole application should you use to confirm your suspicions?
C. SmartView Status
D. SmartView Tracker
Q118. - (Topic 1)
Anti-Spoofing is typically set up on which object type?
B. Security Management object
D. Security Gateway
Q119. - (Topic 3)
Where do you verify that UserDirectory is enabled?
A. Verify that Security Gateway > General Properties > Authentication > Use UserDirectory (LDAP) for Security Gateways is checked
B. Verify that Global Properties > Authentication > Use UserDirectory (LDAP) for Security Gateways is checked
C. Verify that Security Gateway > General Properties > UserDirectory (LDAP) > Use UserDirectory (LDAP) for Security Gateways is checked
D. Verify that Global Properties > UserDirectory (LDAP) > Use UserDirectory (LDAP) for Security Gateways is checked
Q120. - (Topic 2)
Which of the following is a viable consideration when determining Rule Base order?
A. Adding SAM rules at the top of the Rule Base
B. Placing frequently accessed rules before less frequently accessed rules
C. Grouping rules by date of creation
D. Grouping IPS rules with dynamic drop rules
[TRY FREE] BUY 156-215.77 Full version( pdf+software ):