Black Friday Special - 70% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code: dm70dm

Note! The 156-115.80 Exam is no longer available.

156-115.80 Check Point Certified Security Master - R80 Questions and Answers

Questions 4

Which file would you need to make sure you collect when debugging a VPN that fails to establish that is configured to use IKEv2?

Options:

A.

$FWDIR/log/ike2.elg

B.

$FWDIR/log/vpnd.xml.v2

C.

$FWDIR/log/ikev2.xml

D.

$CPDIR/log/ike.elg

Buy Now
Questions 5

Which command would you use to check CoreXL instances for IPv6 traffic?

Options:

A.

fwaccel6 stats

B.

fwaccel6 stat

C.

fw ctl multik stat

D.

fw6ctl multik stat

Buy Now
Questions 6

Which layer in the IPS blade is responsible for reassembly of TCP packets as they arrive at the gateway?

Options:

A.

Protocol Parsers

B.

Passive Streaming Library

C.

Contexts Management

D.

Protections

Buy Now
Questions 7

Which command would show the synchronization statistics between cluster members?

Options:

A.

cphaprob stat

B.

fw ctl sync

C.

fw ctl pstat

D.

cphaprob sync

Buy Now
Questions 8

The CPM process uses what ports?

Options:

A.

19009 and 18120

B.

18265 and 257

C.

19009 and 9009

D.

18265 and 9009

Buy Now
Questions 9

During firewall kernel debug with fw ctl zdebug you received less information than expected. You noticed that a lot of messages were lost since the time the debug was started. What should you do to resolve this issue?

Options:

A.

Increase debug buffer; Use fw ctl debug –buf 32768

B.

Redirect debug output to file; Use fw ctl zdebug –o ./debug.elg

C.

Increase debug buffer; Use fw ctl zdebug –buf 32768

D.

Redirect debug output to file; Use fw ctl debug –o ./debug.elg

Buy Now
Questions 10

What is enabled by the command “vpn debug mon”?

Options:

A.

statistics monitoring for vpn encrypted packets

B.

vpn daemon monitor mode

C.

ike monitor

D.

vpn debug mode

Buy Now
Questions 11

If cluster members are geographically separated and the time to detect a failover needs to be longer, what timer needs to be adjusted?

Options:

A.

fwha_timer_cpha_res

B.

fwha_timer_dist_res

C.

fwha_geosync_timer

D.

fwha_timer_sync_res

Buy Now
Questions 12

The CPSizeMe script will run how long by default?

Options:

A.

48 hours

B.

12 hours

C.

8 hours

D.

24 hours

Buy Now
Questions 13

A Firewall administrator is attempting to push a policy to a new Security Gateway for a remote office but the installation fails. The Management Server IP is 10.1.1.101. Initial troubleshooting shows that policy is successfully transferred to the Gateway. What command would you use to attempt to identify the cause of the issue?

Options:

A.

fw ctl debug –T –f > /var/log/p_debug.txt

B.

cp_merge export_policy –s 10.1.1.101 –n Standard $var/log/

C.

fw ctl debug –m 10.1.1.101

D.

fw fetchlocal –d $FWDIR/state/_tmp/FW1

Buy Now
Questions 14

Consider an IKE debug file that has been generated when debugging an issue with site to site VPN. What is the purpose of a NONCE?

Options:

A.

Randomly generated part of key generation

B.

Vendor ID and Remote Gateway ID

C.

Protocol 50 and 51 representations

D.

Fixed hex value of Phase 2 keys with PFS

Buy Now
Questions 15

Having a look at the output of the “fwaccel conns” command, the F flag is the indicator for a packet

.

Options:

A.

getting the routing information according to the Forwarding Information Base (FIB)

B.

being processed by the firewall kernel module

C.

going through the slow path

D.

being forced of using the accelerated path

Buy Now
Questions 16

Which templates for SecureXL are not enabled by default?

Options:

A.

All templates are disabled by default

B.

Accept and NMR

C.

Drop and NAT

D.

All templates are enabled by default

Buy Now
Questions 17

Which of the following would NOT be a flag when debugging a unified policy?

Options:

A.

rulebase

B.

clob

C.

connection

D.

tls

Buy Now
Questions 18

What command, when combined with IPS traffic, will give you information that can be used to determine if adjustments can be made to improve performance and security?

Options:

A.

# fw ctl ips stats

B.

# $FWDIR/bin/get_ips_statistics.sh

C.

# $FWDIR/scripts/get_ips_statistics.sh

D.

> show ips all statistics

Buy Now
Questions 19

What ClusterXL mechanism is used to verify that the interfaces of other cluster members are UP and communicates the status of cluster members?

Options:

A.

PING

B.

CCP

C.

PPP

D.

HELLO

Buy Now
Questions 20

What is the correct command to turn off an IKE debug?

Options:

A.

vpn debug ikeoff

B.

fw ctl debug ikeoff

C.

vpn debug ikeoff 0

D.

fw ctl vpn debug ikeoff

Buy Now
Questions 21

What is true about ike.elg file?

Options:

A.

It contains the name of the VPN communities on the local security gateway

B.

ike.elg is only present on the security manager

C.

It is a debug file that contains information relevant to IKE phase 1 and phase 2 exchange

D.

It is a binary file and needs a special app to open it.

Buy Now
Questions 22

Which of the following file is commonly associated with troubleshooting crashes on a system such as the Security Gateway?

Options:

A.

core dump

B.

CPMIL dump

C.

fw monitor

D.

tcpdump

Buy Now
Questions 23

You suspect that IPS protections may be dropping legitimate traffic by mistake. To reduce the false positives, what GuiDBedit parameter could you enable to work with fw ctl zdebug drop to generate a more elaborate drop message for these packets?

Options:

A.

enable_inspect_debug_ips_compilation

B.

inspect_ips_debug_inspection

C.

enable_inspect_debug_compilation

D.

enable_inspect_debug_ips

Buy Now
Exam Code: 156-115.80
Exam Name: Check Point Certified Security Master - R80
Last Update: Nov 29, 2023
Questions: 159
dumpsmate guaranteed to pass
24/7 Customer Support

DumpsMate's team of experts is always available to respond your queries on exam preparation. Get professional answers on any topic of the certification syllabus. Our experts will thoroughly satisfy you.

Site Secure

mcafee secure

TESTED 24 Nov 2024