
正真正銘の156-215.81問題集には100%合格率練習テスト問題集
CheckPoint 156-215.81リアル試験問題保証付き 更新された問題集
Check Point Certified Security Administratorになるには、CheckPoint 156-215.81認定試験に合格する必要があります。この試験は、Check Pointのセキュリティ技術をはじめ、ソフトウェアの様々なセキュリティ機能や機能を管理する能力をテストすることを目的としています。この試験は、ネットワークセキュリティ、VPN、ファイアウォール、侵入防止など、さまざまなトピックをカバーしています。
質問 # 240
What is the default shell for the command line interface?
- A. Admin
- B. Expert
- C. Clish
- D. Normal
正解:C
質問 # 241
Which software blade enables Access Control policies to accept, drop, or limit web site access based on user, group, and/or machine?
- A. Identity Awareness
- B. Application Control
- C. Data Awareness
- D. Threat Emulation
正解:B
解説:
Explanation
Application Control is the software blade that enables Access Control policies to accept, drop, or limit web site access based on user, group, and/or machine. Application Control allows you to define granular rules for applications, web sites, web categories, web content types, and users. You can also use Application Control to monitor and block risky applications and web usage. References: [Application Control Administration Guide R80.40]
質問 # 242
When launching SmartDashboard, what information is required to log into R77?
- A. Password, Management Server IP, LDAP Server IP
- B. Password, Management Server IP
- C. User Name, Password, Management Server IP
- D. User Name, Management Server IP, certificate fingerprint file
正解:C
質問 # 243
Which of the following is considered a "Subscription Blade", requiring renewal every 1-3 years?
- A. IPSEC VPN Blade
- B. Identity Awareness Blade
- C. Firewall Blade
- D. IPS blade
正解:D
解説:
Explanation
The following is considered a "Subscription Blade", requiring renewal every 1-3 years: IPS blade4. The IPS blade is a software blade that provides protection against network attacks and exploits by inspecting traffic and blocking malicious packets. The IPS blade requires a subscription license that includes updates for the IPS signatures and Geo Protection database. Other subscription blades include Anti-Bot, Anti-Virus, URL Filtering, Application Control, Threat Emulation, and Threat Extraction. References: Check Point Licensing and Contract Operations User Guide
質問 # 244
Fill in the blank: ________information is included in the "Full Log" tracking option, but is not included in the "Log" tracking option?
- A. application
- B. destination port
- C. data type
- D. file attributes
正解:C
質問 # 245
Which of the following is NOT a component of Check Point Capsule?
- A. Capsule Docs
- B. Capsule Workspace
- C. Capsule Cloud
- D. Capsule Enterprise
正解:D
解説:
Explanation
The components of Check Point Capsule are Capsule Docs, Capsule Cloud, and Capsule Workspace123.
There is no Capsule Enterprise component. Capsule Docs protects business documents everywhere they go.
Capsule Cloud protects mobile users outside the enterprise security perimeter. Capsule Workspace creates a secure business environment on mobile devices. References: Check Point Capsule Datasheet, Check Point Capsule Workspace Datasheet, Mobile Secure Workspace with Capsule
質問 # 246
Fill in the blank: When LDAP is integrated with Check Point Security Management, it is then referred to as
_______.
- A. UserCheck
- B. User Directory
- C. User Center
- D. User Administration
正解:B
解説:
Explanation
When LDAP is integrated with Check Point Security Management, it is then referred to as User Directory.
User Directory is a feature that allows you to import users and groups from an external LDAP server and use them in your security policies. User Center, User Administration, and UserCheck are different features that are not related to LDAP integration.References: [User Directory], [LDAP Integration]
質問 # 247
Full synchronization between cluster members is handled by Firewall Kernel. Which port is used for this?
- A. UDP port 265
- B. TCP port 256
- C. TCP port 265
- D. UDP port 256
正解:C
解説:
Explanation
The port used for full synchronization between cluster members is TCP port 2654. This port is used by the Firewall Kernel to send and receive synchronization data, such as connection tables, NAT tables, and VPN keys4. UDP port 8116 is used by the Cluster Control Protocol (CCP) for internal communications between cluster members4. References: How does the Cluster Control Protocol function in working and failure scenarios for gateway clusters?
質問 # 248
When using Monitored circuit VRRP, what is a priority delta?
- A. When an interface fails the priority delta decides if the other interfaces takes over
- B. When an interface fails the delta claims the priority
- C. When an interface fails the priority changes to the priority delta
- D. When an interface fails the priority delta is subtracted from the priority
正解:D
解説:
Explanation
When using Monitored circuit VRRP, the priority delta is the value that is subtracted from the priority of a cluster member when one of its monitored interfaces fails2. For example, if the priority of a cluster member is
100 and the priority delta is 10, then when one of its monitored interfaces fails, its priority becomes 90.
References: Check Point R81 ClusterXL Administration Guide
質問 # 249
Which option in tracking allows you to see the amount of data passed in the connection?
- A. Advanced
- B. Logs
- C. Data
- D. Accounting
正解:D
解説:
Explanation
Accounting is the option in tracking that allows you to see the amount of data passed in the connection.
Accounting tracks the number of bytes and packets for each connection and generates reports based on the collected data. References: Certified Security Administrator (CCSA) R81.20 Course Overview, page 14.
質問 # 250
When should you generate new licenses?
- A. When the existing license expires, license is upgraded or the IP-address where the license is tied changes.
- B. Only when the license is upgraded.
- C. Before installing contract files.
- D. After an RMA procedure when the MAC address or serial number of the appliance changes.
正解:A
質問 # 251
Choose what BEST describes the reason why querying logs now is very fast.
- A. SmartConsole now queries results directly from the Security Gateway
- B. Indexing Engine indexes logs for faster search results
- C. The amount of logs been store is less than the usual in older versions
- D. New Smart-1 appliances double the physical memory install
正解:B
解説:
Ref: https://sc1.checkpoint.com/documents/R80.40/WebAdminGuides/EN/CP_R80.40_LoggingAndMonitoring_AdminGuide/Topics-LMG/Enabling-log-indexing.htm
質問 # 252
In order to see real-time and historical graph views of Security Gateway statistics in SmartView Monitor, what feature needs to be enabled on the Security Gateway?
- A. Logging & Monitoring
- B. Monitoring Blade
- C. SNMP
- D. None - the data is available by default
正解:B
解説:
Explanation
In order to see real-time and historical graph views of Security Gateway statistics in SmartView Monitor, the Monitoring Blade feature needs to be enabled on the Security Gateway. The Monitoring Blade is a software blade that collects and displays network and security performance data from the Security Gateway, such as traffic, throughput, connections, CPU usage, memory usage, etc. The Monitoring Blade can be enabled or disabled on each Security Gateway from the SmartConsole.References: [Monitoring Blade], [SmartView Monitor]
質問 # 253
In HTTPS Inspection policy, what actions are available in the "Actions" column of a rule?
- A. "Inspect", "Bypass", "Block"
- B. "Inspect", "Bypass", "Categorize"
- C. "Detect", "Bypass"
- D. "Inspect", "Bypass"
正解:D
質問 # 254
URL Filtering employs a technology, which educates users on web usage policy in real time. What is the name of that technology?
- A. WebCheck
- B. UserCheck
- C. Harmony Endpoint
- D. URL categorization
正解:B
質問 # 255
All R77 Security Servers can perform authentication with the exception of one.
Which of the Security Servers can NOT perform authentication?
- A. FTP
- B. RLOGIN
- C. HTTP
- D. SMTP
正解:D
質問 # 256
SmartEvent does NOT use which of the following procedures to identity events:
- A. Matching a log against each event definition
- B. Create an event candidate
- C. Matching a log against global exclusions
- D. Matching a log against local exclusions
正解:D
質問 # 257
Which Check Point software blade provides visibility of users, groups and machines while also providing access control through identity-based policies?
- A. Firewall
- B. Identity Awareness
- C. Application Control
- D. URL Filtering
正解:B
質問 # 258
......
CheckPoint 156-215.81 認定試験の出題範囲:
| トピック | 出題範囲 |
|---|---|
| トピック 1 |
|
| トピック 2 |
|
| トピック 3 |
|
| トピック 4 |
|
| トピック 5 |
|
| トピック 6 |
|
| トピック 7 |
|
検証済み!合格できる156-215.81試験一発合格保証付き:https://jp.fast2test.com/156-215.81-premium-file.html
無料156-215.81サンプル問題と 100%カバー率でリアル試験問題:https://drive.google.com/open?id=1X87hY-6bT2EN9OHJlEKHhDVvYfxeiJwK