156-215.77 Guide

The Secret of 156 215.77 pdf

Actualtests 156 215.77 pdf Questions are updated and all exam 156 215.77 answers are verified by experts. Once you have completely prepared with our ccsa 156 215.77 exam prep kits you will be ready for the real ccsa 156 215.77 exam without a problem. We have Replace Check Point 156 215.77 pdf dumps study guide. PASSED checkpoint 156 215.77 First attempt! Here What I Did.

Q161. - (Topic 3) 

When using vpn tu, which option must you choose if you only want to clear phase 2 for a specific IP (gateway)? 

A. (8) Delete all IPsec+IKE SAs for a given User (Client) 

B. (5) Delete all IPsec SAs for a given peer (GW) 

C. (6) Delete all IPsec SAs for a given User (Client) 

D. (7) Delete all IPsec+IKE SAs for a given peer (GW) 


Q162. - (Topic 2) 

While in SmartView Tracker, Brady has noticed some very odd network traffic that he thinks could be an intrusion. He decides to block the traffic for 60 minutes, but cannot remember all the steps. What is the correct order of steps needed to set up the block? 

1) Select Active Mode tab in SmartView Tracker. 

2) Select Tools > Block Intruder. 

3) Select Log Viewing tab in SmartView Tracker. 

4) Set Blocking Timeout value to 60 minutes. 

5) Highlight connection that should be blocked. 

A. 3, 5, 2, 4 

B. 1, 5, 2, 4 

C. 1, 2, 5, 4 

D. 3, 2, 5, 4 


Q163. - (Topic 1) 

Peter is your new Security Administrator. On his first working day, he is very nervous and enters the wrong password three times. His account is locked. What can be done to unlock Peter's account? Give the BEST answer. 

A. It is not possible to unlock Peter's account. You have to install the firewall once again or abstain from Peter's help. 

B. You can unlock Peter's account by using the command fwm unlock_admin -u Peter on the Security Gateway. 

C. You can unlock Peter's account by using the command fwm lock_admin -u Peter on the Security Management Server. 

D. You can unlock Peter's account by using the command fwm unlock_admin -u Peter on the Security Management Server 


Q164. - (Topic 2) 

What information is found in the SmartView Tracker Management log? 

A. Administrator SmartDashboard logout event 

B. SecurePlatform expert login event 

C. Creation of an administrator using cpconfig 

D. FTP username authentication failure 


Q165. - (Topic 3) 

What physical machine must have access to the User Center public IP address when checking for new packages with SmartUpdate? 

A. SmartUpdate Repository SQL database Server 

B. A Security Gateway retrieving the new upgrade package 

C. SmartUpdate installed Security Management Server PC 

D. SmartUpdate GUI PC 


Q166. - (Topic 1) 

How can you most quickly reset Secure Internal Communications (SIC) between a Security Management Server and Security Gateway? 

A. From the Security Management Server's command line, type fw putkey -p <shared key> <IP Address of Security Gateway>. 

B. Run the command fwm sic_reset to reinitialize the Security Management Server Internal Certificate Authority (ICA). Then retype the activation key on the Security Gateway from SmartDashboard. 

C. Use SmartUpdate to retype the Security Gateway activation key. This will automatically sync SIC to both the Security Management Server and Gateway. 

D. From cpconfig on the Gateway, choose the Secure Internal Communication option and retype the activation key. Next, retype the same key in the Gateway object in SmartDashboard and reinitialize Secure Internal Communications (SIC). 


9. - (Topic 1) 

Several Security Policies can be used for different installation targets. The Firewall protecting Human Resources' servers should have its own Policy Package. These rules must be installed on this machine and not on the Internet Firewall. How can this be accomplished? 

A. A Rule Base is always installed on all possible targets. The rules to be installed on a Firewall are defined by the selection in the Rule Base row Install On. 

B. A Rule Base can always be installed on any Check Point Firewall object. It is necessary to select the appropriate target directly after selecting Policy > Install on Target. 

C. When selecting the correct Firewall in each line of the Rule Base row Install On, only this Firewall is shown in the list of possible installation targets after selecting Policy > Install on Target. 

D. In the menu of SmartDashboard, go to Policy > Policy Installation Targets and select the correct firewall via Specific Targets. 


Q167. - (Topic 1) 

What are you required to do before running the command upgrade_export? 

A. Run a cpstop on the Security Management Server. 

B. Run a cpstop on the Security Gateway. 

C. Close all GUI clients. 

D. Run cpconfig and set yourself up as a GUI client. 


Q168. - (Topic 3) 

You are a Security Administrator preparing to deploy a new HFA (Hotfix Accumulator) to ten Security Gateways at five geographically separate locations. What is the BEST method to implement this HFA? 

A. Send a CD-ROM with the HFA to each location and have local personnel install it. 

B. Use SmartUpdate to install the packages to each of the Security Gateways remotely. 

C. Send a Certified Security Engineer to each site to perform the update. 

D. Use a SSH connection to SCP the HFA to each Security Gateway. Once copied locally, initiate a remote installation command and monitor the installation progress with SmartView Monitor. 


Q169. - (Topic 3) 

Which of the following authentication methods can be configured in the Identity Awareness setup wizard? 

A. Captive Portal 


C. Check Point Password 

D. Windows password 


Q170. - (Topic 2) 

You are a Security Administrator using one Security Management Server managing three different firewalls. One firewall does NOT show up in the dialog box when attempting to install a Security Policy. Which of the following is a possible cause? 

A. The firewall has failed to sync with the Security Management Server for 60 minutes. 

B. The firewall object has been created but SIC has not yet been established. 

C. The firewall is not listed in the Policy Installation Targets screen for this policy package. 

D. The license for this specific firewall has expired. 


To know more about the 156-215.77, click here.

Tagged as : Check Point 156-215.77 Dumps, Download 156-215.77 pdf, 156-215.77 VCE, 156-215.77 pass4sure, examcollection 156-215.77