156-585無料問題集「CheckPoint Check Point Certified Troubleshooting Expert」

質問 1

Some users from your organization have been reported some connection problems with CIFS since this morning. You suspect an IPS Issue after an automatic IPS update last night. So you want to perform a packet capture on uppercase I only directly after the IPS module (position 4 in the chain) to check if the packets pass the IPS. What command do you need to run?

（A）tcpdump -eni any <filterexpression>

（B）fw monitor -ml -pl 5 -e <filterexpression>

（C）fw monitor -pl asm <filterexpression>

（D）fw monitor -pi 5 -e <filterexpression>

正解：B 解答を投票する

質問 2

What does CMI stand for in relation to the Access Control Policy?

（A）Content Matching Infrastructure

（B）Context Manipulation Interface

（C）Content Management Interface

（D）Context Management Infrastructure

正解：D 解答を投票する

質問 3

What is the correct syntax to turn a VPN debug on and create new empty debug files?

（A）vpn debug trunkon

（B）vpn kdebug on

（C）vpndebug trunc on

（D）vpn debug truncon

正解：A 解答を投票する

質問 4

How many captures does the command "fw monitor -p all" take?

（A）All 15 of the inbound and outbound modules

（B）All 4 points of the fw VM modules

（C）1 from every inbound and outbound module of the chain

（D）The -p option takes the same number of captures, but gathers all of the data packet

正解：C 解答を投票する

質問 5

If IPS protections that prevent SecureXL from accelerating traffic, such as Network Quota, Fingerprint Scrambling. TTL Masking etc, have to be used, what is a recommended practice to enhance the performance of the gateway?

（A）Use the IPS exception mechanism

（B）Disable all such protections

（C）Upgrade the hardware to include more Cores and Memory

（D）Disable SecureXL and use CoreXL

正解：D 解答を投票する

質問 6

You are trying to establish a VPN tunnel between two Security Gateways but fail. What initial steps will you make to troubleshoot the issue

（A）capture traffic on both tunnel members and collect kernel debug for fw module with vm, crypt, conn and drop flags

（B）capture traffic on both tunnel members and collect kernel debug for fw module with vm, crypt, conn and drop flags, then collect debug of IKE and VPND daemon

（C）collect debug of IKE and VPND daemon and collect kernel debug for fw module with vm, crypt, conn and drop flags

（D）capture traffic on both tunnel members and collect debug of IKE and VPND daemon

正解：D 解答を投票する

質問 7

Check Point Threat Prevention policies can contain multiple policy layers and each layer consists of its own Rule Base Which Threat Prevention daemon is used for Anti-virus?

（A）in emaild

（B）in.emaild.mta

（C）ctasd

（D）in.msd

正解：A 解答を投票する

質問 8

What table does command "fwaccel conns" pull information from?

（A）SecureXLCon

（B）cphwd_db

（C）fwxl_conns

（D）sxl_connections

正解：C 解答を投票する

質問 9

Which command do you need to execute to insert fw monitor after TCP streaming (out) in the outbound chain using absolute position? Given the chain was 1ffffe0, choose the correct answer.

（A）fw monitor -po -0x1ffffe0

（B）fw monitor -po 1ffffe0

（C）fw monitor -p0 -ox1ffffe0

（D）fw monitor -p0 ox1ffffe0

正解：A 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

質問 10

What are the four ways to insert an FW Monitor into the firewall kernel chain?

（A）Absolute position using location, absolute position using alias, relative position, all positions

（B）Relative position using geolocation, relative position using inertial navigation, absolute position, all positions

（C）Relative position using location, relative position using alias, absolute position, all positions

（D）Absolute position using location, relative position using alias, general position, all positions

正解：B 解答を投票する

156-585 無料問題集「CheckPoint Check Point Certified Troubleshooting Expert」

弊社を連絡する

関連リンク

トップ試験