When using GAiA, it might be necessary to temporarily change the MAC address of the interface eth 0 to 00:0C:29:12:34:56. After restarting the network the old MAC address should be active. How do you configure this change?

A. Option A

B. Option B

C. Option C

D. Option D

Your organization's disaster recovery plan needs an update to the backup and restore section to reap the new distributed R77 installation benefits. Your plan must meet the following required and desired objectives:

Required Objective: The Security Policy repository must be backed up no less frequently than every 24 hours.

Desired Objective: The R77 components that enforce the Security Policies should be backed up at least once a week.

Desired Objective: Back up R77 logs at least once a week.

Your disaster recovery plan is as follows:

-Use the cron utility to run the command upgrade_export each night on the Security Management Servers.

-

Configure the organization's routine back up software to back up the files created by the command upgrade_export.

-

Configure the GAiA back up utility to back up the Security Gateways every Saturday night.

-Use the cron utility to run the command upgrade_export each Saturday night on the log servers.

-

Configure an automatic, nightly logswitch.

-

Configure the organization's routine back up software to back up the switched logs every night. Upon evaluation, your plan:

A.

Meets the required objective and only one desired objective.

B.

Meets the required objective but does not meet either desired objective.

C.

Does not meet the required objective.

D.

Meets the required objective and both desired objectives.

Which command would provide the most comprehensive diagnostic information to Check Point Technical Support?

A. fw cpinfo

B. cpinfo -o date.cpinfo.txt

C. diag

D. cpstat - date.cpstat.txt

The technical-support department has a requirement to access an intranet server. When configuring a User Authentication rule to achieve this, which of the following should you remember?

A. You can only use the rule for Telnet, FTP, SMTP, and rlogin services.

B. The Security Gateway first checks if there is any rule that does not require authentication for this type of connection before invoking the Authentication Security Server.

C. Once a user is first authenticated, the user will not be prompted for authentication again until logging out.

D. You can limit the authentication attempts in the User Properties' Authentication tab.

Users with Identity Awareness Agent installed on their machines login with __________, so that when the user logs into the domain, that information is also used to meet Identity Awareness credential requests.

A. Key-logging

B. ICA Certificates

C. SecureClient

D. Single Sign-On

What gives administrators more flexibility when configuring Captive Portal instead of LDAP query for Identity Awareness authentication?

A. Captive Portal is more secure than standard LDAP

B. Nothing, LDAP query is required when configuring Captive Portal

C. Captive Portal works with both configured users and guests

D. Captive Portal is more transparent to the user

A ClusterXL configuration is limited to ___ members.

A. There is no limit.

B. 16

C. 6

D. 2

Fill in the blank. To verify that a VPN Tunnel is properly established, use the command _________

A. vpn tunnelutil

Match the ClusterXL modes with their configurations. Exhibit:

A. A-2, B-3, C-4, D-1

B. A-2, B-3, C-1, D-5

C. A-3, B-5, C-1, D-4

D. A-5, B-2, C-4, D-1

Match the VPN-related terms with their definitions. Each correct term is only used once. Exhibit:

A. A-3, B-4, C-1, D-5

B. A-4, B-3, C-5, D-2

C. A-2, B-5, C-4, D-1

D. A-3, B-2, C-1, D-4