[2024年05月]更新の156-215.81試験問題集合格させるのは2024年最新のCheck Point Certified Security Administrator R81
無料で使える156-215.81試験問題集で合格させるお手軽に試験合格
質問 # 85
Phase 1 of the two-phase negotiation process conducted by IKE operates in ______ mode.
- A. Main
- B. High Alert
- C. Authentication
- D. Quick
正解:A
解説:
Explanation
Phase 1 of the two-phase negotiation process conducted by IKE operates in Main mode or Aggressive mode12. Main mode is more secure than Aggressive mode, as it protects the identities of the peers and uses six messages to establish the IKE SA13. Authentication, Quick, and High Alert are not valid modes for IKE phase 1.
References: Understand IPsec IKEv1 Protocol, Internet Key Exchange for IPsec VPNs Configuration Guide, Internet Key Exchange
質問 # 86
What is the purpose of a Stealth Rule?
- A. To drop any traffic destined for the firewall that is not otherwise explicitly allowed.
- B. A rule that allows administrators to access SmartDashboard from any device.
- C. A rule at the end of your policy to drop any traffic that is not explicitly allowed.
- D. A rule used to hide a server's IP address from the outside world.
正解:A
質問 # 87
Which of the following is the most secure means of authentication?
- A. Token
- B. Pre-shared secret
- C. Password
- D. Certificate
正解:D
質問 # 88
Which of the following is NOT a tracking log option in R80.x?
- A. Extended Log
- B. Log
- C. Full Log
- D. Detailed Log
正解:D
解説:
Explanation
Detailed Log is not a valid tracking log option in R80.x3. The tracking log options in R80.x are Log, Full Log, and Extended Log45. References: Where is 'full log' option in track column, LOGGINGAND MONITORING R80, Logging and Monitoring Administration Guide R80.20
質問 # 89
Vanessa is a Firewall administrator. She wants to test a backup of her company's production Firewall cluster Dallas_GW. She has a lab environment that is identical to her production environment. She decided to restore production backup via SmartConsole in lab environment. Which details she need to fill in System Restore window before she can click OK button and test the backup?
- A. Server, Protocol, Username, Password, Path, Comment, Member
- B. Server, TFTP, Username, Password, Path, Comment, All Members
- C. Server, Protocol, Username, Password, Path, Comment, All Members
- D. Server, SCP, Username, Password, Path, Comment, Member
正解:C
質問 # 90
Fill in the blank: A(n) _____ rule is created by an administrator and is located before the first and before last rules in the Rule Base.
- A. Implicit drop
- B. Implicit accept
- C. Explicit
- D. Implied
- E. Firewall drop
正解:D
質問 # 91
Fill in the blank: Browser-based Authentication sends users to a web page to acquire identities using ___________.
- A. User Directory
- B. UserCheck
- C. Captive Portal
- D. Captive Portal and Transparent Kerberos Authentication
正解:D
解説:
https://sc1.checkpoint.com/documents/R81/WebAdminGuides/EN/CP_R81_IdentityAwareness_AdminGuide/Topics-IDAG/Identity-Sources-Browser-Based-Authentication.htm
質問 # 92
CPU-level of your Security gateway is peaking to 100% causing problems with traffic. You suspect that the problem might be the Threat Prevention settings.
The following Threat Prevention Profile has been created.
How could you tune the profile in order to lower the CPU load still maintaining security at good level? Select the BEST answer.
- A. Set the Performance Impact to Very Low Confidence to Prevent.
- B. Set High Confidence to Low and Low Confidence to Inactive.
- C. The problem is not with the Threat Prevention Profile. Consider adding more memory to the appliance.
- D. Set the Performance Impact to Medium or lower.
正解:D
解説:
Explanation
The BEST way to tune the profile in order to lower the CPU load still maintaining security at good level is to set the Performance Impact to Medium or lower. This will reduce the number of packets that are inspected by the Threat Prevention blades, while still providing a high level of protection . Setting High Confidence to Low and Low Confidence to Inactive will lower the security level, as it will allow more traffic that may be malicious. The problem is likely with the Threat Prevention Profile, as it can have a significant impact on the CPU utilization of the Security Gateway. Adding more memory to the appliance will not solve the problem, as memory is not the bottleneck in this case. Setting the Performance Impact to Very Low Confidence to Prevent will increase the CPU load, as it will inspect more packets and block more traffic that may be false positives.
References: Threat Prevention Administration Guide, Check Point R81.10
質問 # 93
True or False: More than one administrator can log into the Security Management Server with SmartConsole with write permission at the same time.
- A. True, every administrator works in a session that is independent of the other administrators
- B. False, this feature has to be enabled in the Global Properties.
- C. True, every administrator works on a different database that Is independent of the other administrators
- D. False, only one administrator can login with write permission
正解:A
解説:
Multiple R/W admins can log into SmartConsole and edit rules but they can't edit a rule that is being worked on by another admin.
質問 # 94
When defining QoS global properties, which option below is not valid?
- A. Rate
- B. Authenticated timeout
- C. Weight
- D. Schedule
正解:D
質問 # 95
There are four policy types available for each policy package. What are those policy types?
- A. Access Control, Threat Prevention, NAT and HTTPS Inspection
- B. Access Control, Custom Threat Prevention, Autonomous Threat Prevention and HTTPS Inspection
- C. There are only three policy types: Access Control, Threat Prevention and NAT.
- D. Access Control, Threat Prevention, Mobile Access and HTTPS Inspection
正解:A
解説:
Explanation
The four policy types available for each policy package are Access Control, Threat Prevention, NAT, and HTTPS Inspection. Access Control is the policy type that defines the basic firewall rules. Threat Prevention is the policy type that enables the protection against various types of attacks, such as IPS, Anti-Virus, Anti-Bot, etc. NAT is the policy type that defines the network address translation rules. HTTPS Inspection is the policy type that allows the inspection of encrypted traffic1. The other options are not valid policy types for each policy package.
質問 # 96
How do logs change when the "Accounting" tracking option is enabled on a traffic rule?
- A. Involved traffic logs will be forwarded to a log server.
- B. Involved traffic logs are updated every 10 minutes to show how much data has passed on the connection.
- C. Provides log details view email to the Administrator.
- D. Provides additional information to the connected user.
正解:B
解説:
Explanation
The Accounting tracking option is used to monitor the amount of data that passes through a connection. When this option is enabled on a traffic rule, the involved traffic logs are updated every 10 minutes to show how much data has passed on the connection. This information can be used for billing or auditing purposes3.
References: Check Point R81 Logging and Monitoring Administration Guide
質問 # 97
Which of these components does NOT require a Security Gateway R77 license?
- A. SmartConsole
- B. SmartUpdate upgrading/patching
- C. Security Management Server
- D. Check Point Gateway
正解:A
質問 # 98
When using Automatic Hide NAT, what is enabled by default?
- A. Source Port Address Translation (PAT)
- B. HTTPS Inspection
- C. Static Route
- D. Static NAT
正解:A
解説:
Hiding multiple IP addresses behind one, gateway, IP address requires PAT to differentiate between traffic.
質問 # 99
Customer's R80 management server needs to be upgraded to R80.10. What is the best upgrade method when the management server is not connected to the Internet?
- A. CPUSE offline upgrade
- B. Export R80 configuration, clean install R80.10 and import the configuration
- C. CPUSE online upgrade
- D. SmartUpdate upgrade
正解:A
質問 # 100
Message digests use which of the following?
- A. DES and RC4
- B. SHA-1 and MD5
- C. SSL and MD4
- D. IDEA and RC4
正解:B
質問 # 101
......
チェックポイント認定セキュリティ管理者R81認定は、毎日チェックポイントテクノロジーと協力するIT専門家にとって有益です。この認定は、彼らのスキルと知識を検証し、キャリアの進歩とより高い給与につながる可能性があります。さらに、チェックポイントはサイバーセキュリティ業界でよく知られ、尊敬されるベンダーであり、履歴書に認定を受けることで、混雑した雇用市場で目立つことができます。
Check Point Certified Security Administrator R81認定は、サイバーセキュリティ分野でキャリアをさらに発展させたい個人にとって不可欠です。この認定は世界的に認められ、業界で非常に尊敬されています。Check Pointセキュリティソリューションの管理とメンテナンスにおけるスキルと専門知識を披露する素晴らしい方法です。
156-215.81試験問題集、156-215.81練習テスト問題:https://jp.fast2test.com/156-215.81-premium-file.html
無料156-215.81学習ガイド試験問題と解答:https://drive.google.com/open?id=1X87hY-6bT2EN9OHJlEKHhDVvYfxeiJwK