Download CCSE Update R80.156-915.80.Pass4Sure.2019-01-24.80q.vcex

Vendor: Checkpoint
Exam Code: 156-915.80
Exam Name: CCSE Update R80
Date: Jan 24, 2019
File Size: 79 KB

How to open VCEX files?

Files with VCEX extension can be opened by ProfExam Simulator.

Demo Questions

Question 1
What is a feature that enables VPN connections to successfully maintain a private and secure VPN session without employing Stateful Inspection?
  1. Stateful Mode
  2. VPN Routing Mode
  3. Wire Mode
  4. Stateless Mode
Correct answer: C
Explanation:
Wire Mode is a VPN-1 NGX feature that enables VPN connections to successfully fail over, bypassing Security Gateway enforcement. This improves performance and reduces downtime. Based on a trusted source and destination, Wire Mode uses internal interfaces and VPN Communities to maintain a private and secure VPN session, without employing Stateful Inspection. Since Stateful Inspection no longer takes place, dynamic-routing protocols that do not survive state verification in non-Wire Mode configurations can now be deployed. The VPN connection is no different from any other connections along a dedicated wire, thus the meaning of "Wire Mode". Reference: https://supportcenter.checkpoint.com/supportcenter/portal?eventSubmit_doGoviewsolutiondetails=&solutionid=sk30974
Wire Mode is a VPN-1 NGX feature that enables VPN connections to successfully fail over, bypassing Security Gateway enforcement. This improves performance and reduces downtime. Based on a trusted source and destination, Wire Mode uses internal interfaces and VPN Communities to maintain a private and secure VPN session, without employing Stateful Inspection. Since Stateful Inspection no longer takes place, dynamic-routing protocols that do not survive state verification in non-Wire Mode configurations can now be deployed. The VPN connection is no different from any other connections along a dedicated wire, thus the meaning of "Wire Mode". 
Reference: https://supportcenter.checkpoint.com/supportcenter/portal?eventSubmit_doGoviewsolutiondetails=&solutionid=sk30974
Question 2
On R80.10 the IPS Blade is managed by:
  1. Threat Protection policy
  2. Anti-Bot Blade
  3. Threat Prevention policy
  4. Layers on Firewall policy
Correct answer: A
Explanation:
Reference: https://www.checkpoint.com/downloads/product-related/r80.10-mgmt-architecture-overview.pdf very top of last page.
Reference: https://www.checkpoint.com/downloads/product-related/r80.10-mgmt-architecture-overview.pdf very top of last page.
Question 3
Which packet info is ignored with Session Rate Acceleration?
  1. source port ranges
  2. source ip
  3. source port
  4. same info from Packet Acceleration is used
Correct answer: C
Explanation:
Reference: http://trlj.blogspot.com/2015/10/check-point-acceleration.html
Reference: http://trlj.blogspot.com/2015/10/check-point-acceleration.html
Question 4
What is the purpose of Priority Delta in VRRP?
  1. When a box is up, Effective Priority = Priority + Priority Delta
  2. When an Interface is up, Effective Priority = Priority + Priority Delta
  3. When an Interface fail, Effective Priority = Priority – Priority Delta
  4. When a box fail, Effective Priority = Priority – Priority Delta
Correct answer: C
Explanation:
Each instance of VRRP running on a supported interface may monitor the link state of other interfaces. The monitored interfaces do not have to be running VRRP. If a monitored interface loses its link state, then VRRP will decrement its priority over a VRID by the specified delta value and then will send out a new VRRP HELLO packet. If the new effective priority is less than the priority a backup platform has, then the backup platform will beging to send out its own HELLO packet. Once the master sees this packet with a priority greater than its own, then it releases the VIP. Reference: https://supportcenter.checkpoint.com/supportcenter/portal?eventSubmit_doGoviewsolutiondetails=&solutionid=sk38524
Each instance of VRRP running on a supported interface may monitor the link state of other interfaces. The monitored interfaces do not have to be running VRRP. If a monitored interface loses its link state, then VRRP will decrement its priority over a VRID by the specified delta value and then will send out a new VRRP HELLO packet. If the new effective priority is less than the priority a backup platform has, then the backup platform will beging to send out its own HELLO packet. Once the master sees this packet with a priority greater than its own, then it releases the VIP. 
Reference: https://supportcenter.checkpoint.com/supportcenter/portal?eventSubmit_doGoviewsolutiondetails=&solutionid=sk38524
Question 5
What is the purpose of a SmartEvent Correlation Unit?
  1. The SmartEvent Correlation Unit is designed to check the connection reliability from SmartConsole to the SmartEvent Server
  2. The SmartEvent Correlation Unit’s task it to assign severity levels to the identified events.
  3. The Correlation unit role is to evaluate logs from the log server component to identify patterns/threats and convert them to events.
  4. The SmartEvent Correlation Unit is designed to check the availability of the SmartReporter Server
Correct answer: C
Question 6
The CDT utility supports which of the following?
  1. Major version upgrades to R77.30
  2. Only Jumbo HFA’s and hotfixes
  3. Only major version upgrades to R80.10
  4. All upgrades
Correct answer: D
Explanation:
The Central Deployment Tool (CDT) is a utility that runs on an R77 / R77.X / R80 / R80.10 Security Management Server / Multi-Domain Security Management Server (running Gaia OS). It allows the administrator to automatically install CPUSE Offline packages (Hotfixes, Jumbo Hotfix Accumulators (Bundles), Upgrade to a Minor Version, Upgrade to a Major Version) on multiple managed Security Gateways and Cluster Members at the same time. Reference: https://community.checkpoint.com/thread/5319-my-top-3-check-point-cli-commands
The Central Deployment Tool (CDT) is a utility that runs on an R77 / R77.X / R80 / R80.10 Security Management Server / Multi-Domain Security Management Server (running Gaia OS). 
It allows the administrator to automatically install CPUSE Offline packages (Hotfixes, Jumbo Hotfix Accumulators (Bundles), Upgrade to a Minor Version, Upgrade to a Major Version) on multiple managed Security Gateways and Cluster Members at the same time. 
Reference: https://community.checkpoint.com/thread/5319-my-top-3-check-point-cli-commands
Question 7
The Firewall kernel is replicated multiple times, therefore:
  1. The Firewall kernel only touches the packet if the connection is accelerated
  2. The Firewall can run different policies per core
  3. The Firewall kernel is replicated only with new connections and deletes itself once the connection times out
  4. The Firewall can run the same policy on all cores
Correct answer: D
Explanation:
On a Security Gateway with CoreXL enabled, the Firewall kernel is replicated multiple times. Each replicated copy, or instance, runs on one processing core. These instances handle traffic concurrently, and each instance is a complete and independent inspection kernel. When CoreXL is enabled, all the kernel instances in the Security Gateway process traffic through the same interfaces and apply the same security policy. Reference: https://sc1.checkpoint.com/documents/R77/CP_R77_PerformanceTuning_WebAdmin/6731.htm
On a Security Gateway with CoreXL enabled, the Firewall kernel is replicated multiple times. Each replicated copy, or instance, runs on one processing core. These instances handle traffic concurrently, and each instance is a complete and independent inspection kernel. When CoreXL is enabled, all the kernel instances in the Security Gateway process traffic through the same interfaces and apply the same security policy. 
Reference: https://sc1.checkpoint.com/documents/R77/CP_R77_PerformanceTuning_WebAdmin/6731.htm
Question 8
Sticky Decision Function (SDF) is required to prevent which of the following? Assume you set up an Active-Active cluster.
  1. Symmetric routing
  2. Failovers
  3. Asymmetric routing
  4. Anti-Spoofing
Correct answer: C
Question 9
Which is not a blade option when configuring SmartEvent?
  1. Correlation Unit
  2. SmartEvent Unit
  3. SmartEvent Server
  4. Log Server
Correct answer: B
Explanation:
On the Management tab, enable these Software Blades:Logging & Status SmartEvent Server SmartEvent Correlation Unit Reference: https://sc1.checkpoint.com/documents/R80/CP_R80_LoggingAndMonitoring/html_frameset.htm?topic=documents/R80/CP_R80_LoggingAndMonitoring/120829
On the Management tab, enable these Software Blades:
  • Logging & Status 
  • SmartEvent Server 
  • SmartEvent Correlation Unit 
Reference: https://sc1.checkpoint.com/documents/R80/CP_R80_LoggingAndMonitoring/html_frameset.htm?topic=documents/R80/CP_R80_LoggingAndMonitoring/120829
Question 10
What command would show the API server status?
  1. cpm status
  2. api restart
  3. api status
  4. show api status
Correct answer: C
Explanation:
Reference: https://www.hurricanelabs.com/blog/check-point-api-merging-management-servers-with-r80-10
Reference: https://www.hurricanelabs.com/blog/check-point-api-merging-management-servers-with-r80-10
HOW TO OPEN VCE FILES

Use VCE Exam Simulator to open VCE files
Avanaset

HOW TO OPEN VCEX AND EXAM FILES

Use ProfExam Simulator to open VCEX and EXAM files
ProfExam Screen

ProfExam
ProfExam at a 20% markdown

You have the opportunity to purchase ProfExam at a 20% reduced price

Get Now!