156-587Preview

After kernel debug with “fw ctl debug” you received a huge amount of information. It was saved in a very large file that is difficult to open and analyze with standard text editors. Suggest a solution to solve this issue.

Which of the following daemons is used for Threat Extraction?

You modified kernel parameters and after rebooting the gateway, a lot of production traffic gets dropped and the gateway acts strangely. What should you do?

RAD is initiated when Application Control and URL Filtering blades are active on the Security Gateway. What is the purpose of the following RAD configuration file $FWDIR/conf/rad_settings.C?

What is the name of the VPN kernel process?

You need to run a kernel debug over a longer period of time as the problem occurs only once or twice a week. Therefore, you need to add a timestamp to the kernel debug and write the output to a file but you can’t afford to fill up all the remaining disk space and you only have 10 GB free for saving the debugs. What is the correct syntax for this?

You run cpwd_admin list on a Security Gateway and notice that the CPM process is not listed. Select best answer?

What is the kernel process for Content Awareness that collects the data from the contexts received from the CMI and decides if the file is matched by a data type?

In Check Point’s Packet Processing Infrastructure, what is the role of Observers?

What is the shorthand reference for a classification object?

The packet processing infrastructure consists of 4 components. Which component contains the CLOB, the object that contains information about the packet that is needed to make security decisions?

Which of these packet processing components stores Rule Base matching state-related information?

User defined URLS and HTTPS Inspection User defined URLs on the Security Gateway are stored in which database file?

Which two files contain the Application Database on the Security Gateway?

URL Filtering is an essential part of Web Security in the Gateway. For the Security Gateway to perform a URL lookup when a client makes a URL request, where is the sync-request forwarded from if a sync-request is required?

Which of the following inputs is suitable for debugging HTTPS inspection issues?

What is the best way to resolve an issue caused by a frozen process?

Which of the following would NOT be a flag when debugging a unified policy?

In the Security Management Architecture, what port and process SmartConsole uses to communicate with the management server?

The Check Point Watch Daemon (CPWD) monitors critical Check Point processes, terminating them or restarting them as needed to maintain consistent, stable operating conditions. When checking the status/output of CPWD you are able to see some columns like APP, PID, STAT, START, etc. What is the column “STAT” used for?

Which of the following commands can be used to see the list of processes monitored by the Watch Dog process?

What process monitors, terminates, and restarts critical Check Point processes as necessary?

You found out that $FWDIR/log/fw.log is constantly growing in size at a Security Gateway, what is the reason?

What tool would you run to diagnose logging and indexing?