Is this exam completely free?

ExamCademy offers a free preview for every exam, covering around 20% of the total questions. Full access to all questions is available for free by signing up for an account. Optional supporters unlock AstroTutor (AI tutor) and advanced study modes.

Can I practice IT certification exams from Microsoft, AWS, or CompTIA?

Yes! ExamCademy supports a wide range of IT certification exams including Microsoft Azure, AWS Cloud Practitioner, and CompTIA A+ and Security+.

How accurate are the mock exams?

Our practice questions are community-created and moderator-reviewed to align with realistic exam objectives, style, and difficulty.

156-586 by Checkpoint - Page 1 | ExamCademy

Mode Selection

Question 1

Question 2

Question 3

You need to run a kernel debug over a longer period of time as the problem occurs only once or twice a week. Therefore, you need to add a timestamp to the kernel debug and write the output to a file but you can’t afford to fill up all the remaining disk space and you only have 10 GB free for saving the debugs. What is the correct syntax for this?

A fw ctl debug -T -f -m 10 -s 1000000 -o debugfilename
B fw ctl kdebug -T -f -m 10 -s 1000000 > debugfilename
C fw ctl kdebug -T -f -m 10 -s 1000000 -o debugfilename
D fw ctl kdebug-T -m 10 -s 1000000 -o debugfilename

Question 4

Captive Portal, PDP and PEP run in what space?

A Kernel
B User
C CPM
D FWD

Question 5

VPN issues may result from misconfiguration, communication failure, or incompatible default configurations between peers. Which basic command syntax needs to be used for troubleshooting Site-to-Site VPN issues?

A vpn truncon debug
B cp debug truncon
C vpn debug truncon
D fw debug truncon

Question 6

John has renewed his NPTX License but he gets an error (contract for Anti-Bot expired). He wants to check the subscription status on the CLI of the gateway, what command can he use for this?

A fwm lic print
B fw monitor license status
C cpstat antimalware -f subscription_status
D show license status

Question 7

What is correct about the Resource Advisor (RAD) service on the Security Gateways?

A RAD functions completely in user space. The Pattern Matter (PM) module of the CMI looks up for URLs in the cache and if not found, contact the RAD process in user space to do online categorization
B RAD is completely loaded as a kernel module that looks up URL in cache and if not found connects online for categorization. There is no user space involvement in this process
C RAD is not a separate module, it is an integrated function of the 'fw' kernel module and does all operations in the kernel space
D RAD has a kernel module that looks up the kernel cache, notifies client about hits and misses and forwards a-sync requests to RAD user space module which is responsible for online categorization

Question 8

What is the name of the VPN kernel process?

A FWK
B VPND
C CVPND
D VPNK

Question 9

Check Point Access Control Daemons contains several daemons for Software Blades and features. Which Daemon is used for Application & Control URL Filtering?

A cprad
B rad
C pepd
D pdpd

Question 10

In Mobile Access VPN, clientless access is done using a web browser. The primary communication path for these browser based connections is a process that allows numerous processes to utilize port 443 and redirects traffic to a designated port of the respective process. Which daemon handles this?

A Mobile Access Daemon (MAD)
B Connectra VPN Daemon (cvpnd)
C HTTPS Inspection Daemon (HID)
D Multi-portal Daemon (MPD)

Question 11

Which of the following would NOT be a flag when debugging a unified policy?

A tls
B rulebase
C clob
D connection

Question 12

You do not see logs in the SMS. When you login on the SMS shell and run cpwd_admin list you notice that the RFL process is with status T. What command can you run to try to resolve it?

A RFLstop and RFLstart
B evstart and evstop
C smartlog_server stop and smartlog_server restart
D rflsop and rflstart

Question 13

Which of these packet processing components stores Rule Base matching state-related information?

A Observers
B Classifiers
C Manager
D Handlers

Question 14

PostgreSQL is a powerful, open source relational database management system. Check Point offers a command for viewing the database to interact with Postgres interactive shell. Which command do you need to enter the PostgreSQL interactive shell?

A mysql_client cpm postgres
B mysql -u root
C psql_client cpm postgres
D psql_client postgres cpm

That's the end of the Preview

Create a free account to unlock all questions for this exam.

Log In / Sign Up

Page 1 of 3 • Questions 1-25 of 67

1 2 3

→

Know a question that should be here? Contribute to this exam

What information does the doctor-log script supply?

A Logging errors, Exceptions, Repair options
B Current and daily average logging rates, Indexing status, Size
C Logging rates, Logging Directories, List of troubleshooting tips
D Repair options, Logging Rates, Logging Directories

During firewall kernel debug with fw ctl zdebug you received less information that expected. You noticed that a lot of messages were lost since the time the debug was started. What should you do to resolve this issue?

A Increase debug buffer; Use fw ctl debug -buf 32768
B Redirect debug output to file; Use fw ctl debug -o ./debug.elg
C Redirect debug output to file; Use fw ctl zdebug -o ./debug.elg
D Increase debug buffer; Use fw ctl zdebug -buf 32768