In SmartConsole, objects are used to represent physical and virtual network components and also some logical components. These objects are divided into several categories. Which of the following is NOT an objects category?
ANetwork Object
BIP Address
CLimit
DCustom Application / Site
Security Gateway software blades must be attached to what?
ASecurity Gateway
BSecurity Gateway container
CManagement server
DManagement container
In order for changes made to policy to be enforced by a Security Gateway, what action must an administrator perform?
AInstall policy
BPublish changes
CInstall database
DSave changes
True or False: More than one administrator can log into the Security Management Server with SmartConsole with write permission at the same time.
ATrue, every administrator works on a different database that is independent of the other administrators
BFalse, only one administrator can login with write permission
CTrue, every administrator works in a session that is independent of the other administrators
DFalse, this feature has to be enabled in the Global Properties
Which Autonomous Threat Prevention profile uses sanitization technology?
ACloud/data Center
BGuest Network
CSandbox
DPerimeter
What is the default tracking option of a rule?
ANone
BAlert
CLog
DTracking
Fill in the blank: SmartConsole, SmartEvent GUI client, and _____ allow viewing of billions of consolidated logs and shows them as prioritized security events.
ASmartMonitor
BSmartReporter
CSmartTracker
DSmartView Web Application
What default layers are included when creating a new policy layer?
AApplication Control, URL Filtering and Threat Prevention
BFirewall, Application Control and IPSec VPN
CFirewall, Application Control and IPS
DAccess Control, Threat Prevention and HTTPS Inspection
Is it possible to have more than one administrator connected to a Security Management Server at once?
AYes, but objects edited by one administrator will be locked for editing by others until the session is published.
BYes, but only if all connected administrators connect with read-only permissions.
CYes, but only one of those administrators will have write-permissions. All others will have read-only permission.
DNo, only one administrator at a time can connect to a Security Management Server.
Which of the following is true about Stateful Inspection?
AStateful Inspection looks at both the headers of packets, as well as examining their content.
BStateful Inspection requires two rules, one for outgoing traffic and one for incoming traffic.
CStateful Inspection requires that a server reply to a request, in order to track a connection’s state.
DStateful Inspection tracks state using two tables, one for incoming traffic and one for outgoing traffic.
Which of the following is used to extract state related information from packets and store that information in state tables?
ATRACK Engine
BSTATE Engine
CRECORD Engine
DINSPECT Engine
In SmartConsole, on which tab are Permissions and Administrators defined?
AMANAGE & SETTINGS
BSECURITY POLICIES
CGATEWAYS & SERVERS
DLOGS & MONITOR
Check Point Update Service Engine (CPUSE), also known as Deployment Agent [DA], is an advanced and intuitive mechanism for software deployment on Gaia OS. What software packages are supported for deployment?
AIt supports deployments of single HotFixes (HF), and of Major Versions. Blink Packages and HotFix Accumulators (Jumbo) are not supported.
BIt supports deployments of single HotFixes (HF), of HotFix Accumulators (Jumbo), and of Major Versions.
CIt supports deployments of Major Versions and Blink packages only.
DIt supports deployments of single HotFixes (HF), of HotFix Accumulators (Jumbo), but not of Major Versions.
Which icon in the WebUI indicates that read/write access is enabled?
AEyeglasses
BPencil
CPadlock
DBook
Which of the following log queries would show only dropped packets with source address of 192.168.1.1 and destination address of 172.26.1.1?
A192.168.1.1 AND 172.26.1.1 AND drop
Bsrc:192.168.1.1 AND dst:172.26.1.1 AND action:Drop
C192.168.1.1 OR 172.26.1.1 AND action:Drop
Dsrc:192.168.1.1 OR dst:172.26.1.1 AND action:Drop
Which default Gaia user has full read/write access?
Asuperuser
Bmonitor
Caltuser
Dadmin
In the Check Point three-tiered architecture, which of the following is NOT a function of the Security Management Server?
AVerify and compile Security Policies.
BDisplay policies and logs on the administrator's workstation.
CStore firewall logs to hard drive storage.
DManage the object database.
The purpose of the Communication Initialization process is to establish a trust between the Security Management Server (SMS) to other Check Point Gateways and Servers. Which statement best describes this Secure Internal Communication (SIC)?
AAfter successful initialization, the gateway can communicate with any Check Point node that possesses a SIC certificate signed by the same IC
BNew firewalls can easily establish the trust by using the expert password defined on the SMS and the SMS IP address.
CA SIC certificate is automatically generated on the gateway because the gateway hosts a subordinate CA to the SMS IC
DSecure Internal Communications authenticates the security gateway to the SMS before http communications are allowed.
What is the default shell for the Gaia command line interface?
AAdmin
BClish
CExpert
DBash
The default shell of the Gaia CLI is cli.sh. How do you change from the cli.sh shell to the advanced shell to run Linux commands?
AExecute the command ‘enable’ in the cli.sh shell
BExecute the ‘conf t’ command in the cli.sh shell
CExecute the command ‘expert’ in the cli.sh shell
DExecute the ‘exit’ command in the cli.sh shell
Where can the administrator edit a list of trusted SmartConsole clients?
AUsing cpconfig on any Gateway or Server, in the GAiA Portal logged into a Security Management Server.
BOnly using SmartConsole: Manage and Settings > Permissions and Administrators > Advanced > Trusted Clients.
CIn the GAiA Portal logged into a Security Management Server, using SmartDashboard: Manage and Settings > Permissions and Administrators > Advanced > Trusted Clients, via cpconfig on a Security Gateway.
DUsing cpconfig on a Security Management Server, in the GAiA Portal logged into a Security Management Server, in SmartConsole: Manage and Settings > Permissions and Administrators >Trusted Clients.
Which information is included in the "Extended Log" tracking option, but is not included in the "Log" tracking option?
Adata type information
Bapplication information
Cfile attributes
Ddestination port
Which software blade enables Access Control policies to accept, drop, or limit web site access based on user, group, and/or machine?
AData Awareness
BThreat Emulation
CApplication Control
DIdentity Awareness
What does the 'unknown' SIC status shown on SmartConsole mean?
AThe management can contact the Security Gateway but cannot establish Secure Internal Communication
BAdministrator input the wrong SIC key
CSIC activation key requires a reset
DThere is no connection between the Security Gateway and Security Management Server
Choose what BEST describes a Session.
ASessions ends when policy is pushed to the Security Gateway.
BSessions locks the policy package for editing.
CStarts when an Administrator logs in through SmartConsole and ends when the Administrator logs out.
DStarts when an Administrator publishes all the changes made on SmartConsole.
Preview
