156-215.81無料問題集「CheckPoint Check Point Certified Security Administrator R81」

質問 1

Which of these is NOT a feature or benefit of Application Control?

（A）Identify and control which applications are in your IT environment and which to add to the IT environment.

（B）Automatically identify trusted software that has authorization to run

（C）Eliminate unknown and unwanted applications in your network to reduce IT complexity and application risk.

（D）Scans the content of files being downloaded by users in order to make policy decisions.

正解：D 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

質問 2

Which tool is used to enable ClusterXL?

（A）cpconfig

（B）sysconfig

（C）SmartUpdate

（D）SmartConsole

正解：A 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

質問 3

Which Threat Prevention Software Blade provides protection from malicious software that can infect your network computers? (Choose the best answer.)

（A）Anti-Virus

（B）IPS

（C）Content Awareness

（D）Anti-Malware

正解：A 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

質問 4

Fill in the blank: An identity server uses a______________to trust a Terminal Server Identity Agent.

（A）One-time password

（B）Shared secret

（C）Token

（D）Certificate

正解：B 解答を投票する

質問 5

How are the backups stored in Check Point appliances?

（A）Saved as*.tar under /var/log/CPbackup/backups

（B）Saved as*tgz under /var/log/CPbackup/backups

（C）Saved as*tar under /var/CPbackup

（D）Saved as*tgz under /var/CPbackup

正解：D 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

質問 6

What are the three components for Check Point Capsule?

（A）Capsule Workspace, Capsule Cloud, Capsule Connect

（B）Capsule Workspace, Capsule Docs, Capsule Cloud

（C）Capsule Workspace, Capsule Docs, Capsule Connect

（D）Capsule Docs, Capsule Cloud, Capsule Connect

正解：B 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

質問 7

Fill in the blank RADIUS protocol uses_____to communicate with the gateway

（A）UDP

（B）CCP

（C）HTTP

（D）TDP

正解：A 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

質問 8

The purpose of the Communication Initialization process is to establish a trust between the Security Management Server and the Check Point gateways. Which statement best describes this Secure Internal Communication (SIC)?

（A）After successful initialization, the gateway can communicate with any Check Point node that possesses a SIC certificate signed by the same ICA.

（B）A SIC certificate is automatically generated on the gateway because the gateway hosts a subordinate CA to the SMS ICA.

（C）New firewalls can easily establish the trust by using the expert password defined on the SMS and the SMS IP address.

（D）Secure Internal Communications authenticates the security gateway to the SMS before http communications are allowed.

正解：A 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

質問 9

You are asked to check the status of several user-mode processes on the management server and gateway.
Which of the following processes can only be seen on a Management Server?

（A）fwd

（B）fwm

（C）cpwd

（D）cpd

正解：B 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

質問 10

When a Security Gateway sends its logs to an IP address other than its own, which deployment option is installed?

（A）Targeted

（B）Standalone

（C）Distributed

（D）Bridge Mode

正解：C 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

質問 11

What is the RFC number that act as a best practice guide for NAT?

（A）RFC 1939

（B）RFC 793

（C）RFC 1950

（D）RFC 1918

正解：D 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

質問 12

Which configuration element determines which traffic should be encrypted into a VPN tunnel vs. sent in the clear?

（A）The VPN Domains

（B）The firewall topologies

（C）The Rule Base

（D）NAT Rules

正解：A 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

質問 13

To increase security, the administrator has modified the Core protection 'Host Port Scan' from 'Medium' to
'High' Predefined Sensitivity. Which Policy should the administrator install after Publishing the changes?

（A）The Threat Prevention Policy.

（B）The Access Control and Threat Prevention Policies.

（C）The Access Control & HTTPS Inspection Policy.

（D）The Access Control Policy.

正解：A 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

質問 14

When using Automatic Hide NAT, what is enabled by default?

（A）HTTPS Inspection

（B）Static Route

（C）Source Port Address Translation (PAT)

（D）Static NAT

正解：C 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

質問 15

In the Check Point Security Management Architecture, which component(s) can store logs?

（A）Security Management Server and Security Gateway

（B）Security Management Server

（C）SmartConsole

（D）SmartConsole and Security Management Server

正解：A 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

質問 16

Aggressive Mode in IKEv1 uses how many packages for negotiation?

（A）depends on the make of the peer gateway

（B）3

（C）5

（D）6

正解：B 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

質問 17

What is the main difference between Static NAT and Hide NAT?

（A）Hide NAT only allows incoming connections to protect your network.

（B）Static NAT only allows outgoing connections. Hide NAT allows incoming and outgoing connections.

（C）Static NAT allow incoming and outgoing connections. Hide NAT only allows outgoing connections.

（D）Static NAT only allows incoming connections to protect your network.

正解：C 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

質問 18

Is it possible to have more than one administrator connected to a Security Management Server at once?

（A）Yes, but only one of those administrators will have write-permissions. All others will have read-only permission.

（B）Yes, but objects edited by one administrator will be locked for editing by others until the session is published.

（C）Yes, but only if all connected administrators connect with read-only permissions.

（D）No, only one administrator at a time can connect to a Security Management Server

正解：B 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

156-215.81 無料問題集「CheckPoint Check Point Certified Security Administrator R81」

弊社を連絡する

関連リンク

トップ試験