what are Barak’s remaining steps?
Barak is a Security Administrator for an organization that has two sites using prE. shared secrets
in its VPN. The two sites are Oslo and London. Barak has just been informed that a new office is
opening in Madrid, and he must enable all three sites to connect via the VPN to each other. Three
Security Gateways are managed by the same SmartCenter Server, behind the Oslo Security
Gateway. Barak decides to switch from prE. shared secrets to Certificates issued by the Internal
Certificate Authority (ICA). After creating the Madrid gateway object with the proper VPN Domain,
what are Barak’s remaining steps?
1. Disable “PrE. Shared Secret” on the London and Oslo gateway objects
2. Add the Madrid gateway object into the Oslo and London’s mesh VPN Community
3. Manually generate ICA Certificates for all three Security Gateways.
4. Configure “Traditional mode VPN configuration” in the Madrid gateway object’s VPN screen
5. Reinstall the Security Policy on all three Security Gateways.
How do you configure the FTP resource object and the action column in the rule to achieve this goal?
You have an internal FTP server, and you allow downloading, but not uploading. Assume Network
Address Translation is set up correctly, and you want to add an inbound rule with:
Source: Any
Destination: FTP server
Service: FTP resources object.
How do you configure the FTP resource object and the action column in the rule to achieve this
goal?
For your cluster, you plan to use three machines with the following configurations: Are these machines corre
You are preparing computers for a new ClusterXL deployment. For your cluster, you plan to use
three machines with the following configurations:
Are these machines correctly configured for a ClusterXL deployment?
Which of the following might improve throughput performance?
Damon enables an SMTP resource for content protection. He notices that mail seems to slow
down on occasion, sometimes being delivered late. Which of the following might improve
throughput performance?
What is the consequence of clearing the "Log VoIP Connection" box in Global Properties?
What is the consequence of clearing the “Log VoIP Connection” box in Global Properties?
Which of the following services is provided by a CIFS resource?
VPN-1 NGX includes a resource mechanism for working with the Common Internet File System
(CIFS). However, this service only provides a limited level of actions for CIFS security. Which of
the following services is provided by a CIFS resource?
What is the BEST configuration for VPN Communities among the branch offices and their headquarters, and betwee
Your company has two headquarters, one in London, one in New York. Each headquarters
includes several branch offices. The branch offices only need to communicate with the
headquarters in their country, not with each other, and only the headquarters need to
communicate directly. What is the BEST configuration for VPN Communities among the branch
offices and their headquarters, and between the two headquarters? VPN Communities comprised
of:
Which two other objects should you have created first?
You are preparing to configure your VoIP Domain Gatekeeper object. Which two other objects
should you have created first?
What is the most appropriate setting Yoav should choose?
Yoav is a Security Administrator preparing to implement a VPN solution for his multi-site
organization. To comply with industry regulations, Yoav’s VPN solution must meet the following
requirements:
Portability: Standard
Key management: Automatic, external PKI
Session keys: Changed at configured times during a connection’s lifetime
Key length: No less than 128-bit
Data integrity: Secure against inversion and brutE. force attacks
What is the most appropriate setting Yoav should choose?
Which of the following commands shows full synchronization status?
Which of the following commands shows full synchronization status?