Which path below is available only when CoreXL is enabled?

A. Slow path

B. Firewall path

C. Medium path

D. Accelerated path

Which command shows the installed licenses?

A. cplic print

B. print cplic

C. fwlic print

D. show licenses

Check Point ClusterXL Active/Active deployment is used when:

A. Only when there is Multicast solution set up

B. There is Load Sharing solution set up

C. Only when there is Unicast solution set up

D. There is High Availability solution set up

Your internal networks 10.1.1.0/24, 10.2.2.0/24 and 192.168.0.0/16 are behind the Internet Security Gateway. Considering that Layer 2 and Layer 3 setup is correct, what are the steps you will need to do in SmartConsole in order to get the connection working?

A. 1. Define an accept rule in Security Policy.

2.

Define Security Gateway to hide all internal networks behind the gateway's external IP.

3.

Publish and install the policy.

B. 1. Define an accept rule in Security Policy.

2.

Define automatic NAT for each network to NAT the networks behind a public IP.

3.

Publish the policy.

C. 1. Define an accept rule in Security Policy.

2.

Define automatic NAT for each network to NAT the networks behind a public IP.

3.

Publish and install the policy.

D. 1. Define an accept rule in Security Policy.

2.

Define Security Gateway to hide all internal networks behind the gateway's external IP.

3.

Publish the policy.

How is communication between different Check Point components secured in R80? As with all questions, select the best answer.

A. By using IPSEC

B. By using SIC

C. By using ICA

D. By using 3DES

Your users are defined in a Windows 2008 R2 Active Directory server. You must add LDAP users to a Client Authentication rule. Which kind of user group do you need in the Client Authentication rule in R77?

A. External-user group

B. LDAP group

C. A group with a genetic user

D. All Users

In R80 spoofing is defined as a method of:

A. Disguising an illegal IP address behind an authorized IP address through Port Address Translation.

B. Hiding your firewall from unauthorized users.

C. Detecting people using false or wrong authentication logins

D. Making packets appear as if they come from an authorized IP address.

What are the three conflict resolution rules in the Threat Prevention Policy Layers?

A. Conflict on action, conflict on exception, and conflict on settings

B. Conflict on scope, conflict on settings, and conflict on exception

C. Conflict on settings, conflict on address, and conflict on exception

D. Conflict on action, conflict on destination, and conflict on settings

Which of the following is NOT an advantage to using multiple LDAP servers?

A. You achieve a faster access time by placing LDAP servers containing the database at remote sites

B. Information on a user is hidden, yet distributed across several servers

C. You achieve compartmentalization by allowing a large number of users to be distributed across several servers

D. You gain High Availability by replicating the same information on several servers

The IT Management team is interested in the new features of the Check Point R80 Management and wants to upgrade but they are concerned that the existing R77.30 Gaia Gateways cannot be managed by R80 because it is so different. As the administrator responsible for the Firewalls, how can you answer or confirm these concerns?

A. R80 Management contains compatibility packages for managing earlier versions of Check Point Gateways prior to R80. Consult the R80 Release Notes for more information.

B. R80 Management requires the separate installation of compatibility hotfix packages for managing the earlier versions of Check Point Gateways prior to R80. Consult the R80 Release Notes for more information.

C. R80 Management was designed as a completely different Management system and so can only monitor Check Point Gateways prior to R80.

D. R80 Management cannot manage earlier versions of Check Point Gateways prior to R80. Only R80 and above Gateways can be managed. Consult the R80 Release Notes for more information.