PrepAway - Latest Free Exam Questions & Answers

Category: 156-215.1

Exam 156-215.1: Check Point Certified Security Administrator NGX

What is the problem?

Leave a comment

One of your remote Security Gateways suddenly stops sending logs, and you cannot install the Security Policy on the Gateway. All other remote Security Gateways are logging normally to the SmartCenter Server, and Policy installation is not affected. When you click the Test SIC status button in the problematic gateway object, you receive error message "unknown". What is the problem?

What is a possible cause for the connection problem?

Leave a comment

Jordan’s company is streaming training videos provided by a third party on the Internet. Jordan configures NGX, so that each department ONLY views Webcasts specific to its department. Jordan created and configured the multicast groups for all interfaces, and configures them to "Drop all multicast packets except those whose destination is in the list". However, no multicast transmissions are coming from the Internet. What is a possible cause for the connection problem?

Which of the following are NOT possible reasons?

3 comments

You just installed a new Web server in the DMZ that must be reachable from the Internet. You create a manual Static NAT rule as follows:
Source: Any
Destination: web_public_IP
Service: Any
Translated Source: original
Translated Destination: web_private_IP
Service: original
"web_public_IP" is the node object that represents the public IP address of the new Web server.
"web_private_IP" is the node object that represents the new Web site’s private IP address. You enable all settings from the Global Properties > NAT.
When you try to browse the Web server from the Internet, you see the error "page cannot be displayed".
Which of the following are NOT possible reasons? Choose two.

How can you do this?

Leave a comment

You have two rules, ten users, and two user groups in a Security Policy. You create database version 1 for this configuration. You then delete two existing users and add a new user group. You modify one rule and add two new rules to the Rule Base. You save the Security Policy and create database version 2. After awhile, you decide to roll back to version 1 to use the Rule Base, but you want to keep your user database. How can you do this?

Does Mary’s proposed solution meet the required and desired results?

Leave a comment

Mary is recently hired as the Security Administrator for a public relations company. Mary’s manager has asked her to investigate ways to improve the performance of the firm’s perimeter Security Gateway. Mary must propose a plan based on the following required and desired results:
Required Result #1:Do not purchase new hardware.
Required Result #2:Use configuration changes that do not reduce security.
Desired Result #1:Reduce the number of explicit rules in the Rule Base.
Desired Result #2:Reduce the volume of logs.
Desired Result #3:Improve the Gateway’s performance.
Proposed Solution:
Mary recommends the following changes to the Gateway’s configuration:
Replace all domain objects with network and group objects.
Stop logging Domain Name over UDP (queries).
Use Global Properties, instead of explicit rules, to control ICMP, VRRP, and RIP.
Does Mary’s proposed solution meet the required and desired results?


Page 9 of 14« First...7891011...Last »