NEW QUESTION 1
Automatic affinity means that if SecureXL is running, the affinity for each interface is automatically reset every

• A. 15 sec
• B. 60 sec
• C. 5 sec
• D. 30 sec

Answer: B

NEW QUESTION 2
GAiA Software update packages can be imported and installed offline in situation where:

• A. Security Gateway with GAiA does NOT have SFTP access to Internet
• B. Security Gateway with GAiA does NOT have access to Internet.
• C. Security Gateway with GAiA does NOT have SSH access to Internet.
• D. The desired CPUSE package is ONLY available in the Check Point CLOUD.

Answer: B

NEW QUESTION 3
You noticed that CPU cores on the Security Gateway are usually 100% utilized and many packets were
dropped. You don’t have a budget to perform a hardware upgrade at this time. To optimize drops you decide to use Priority Queues and fully enable Dynamic Dispatcher. How can you enable them?

• A. fw ctl multik dynamic_dispatching on
• B. fw ctl multik dynamic_dispatching set_mode 9
• C. fw ctl multik set_mode 9
• D. fw ctl multik pq enable

Answer: C

NEW QUESTION 4
Which firewall daemon is responsible for the FW CLI commands?

• A. fwd
• B. fwm
• C. cpm
• D. cpd

Answer: A

NEW QUESTION 5
Check Point ClusterXL Active/Active deployment is used when:

• A. Only when there is Multicast solution set up.
• B. There is Load Sharing solution set up.
• C. Only when there is Unicast solution set up.
• D. There is High Availability solution set up.

Answer: D

NEW QUESTION 6
Fill in the blank: The IPS policy for pre-R80 gateways is installed during the _______ .

• A. Firewall policy install
• B. Threat Prevention policy install
• C. Anti-bot policy install
• D. Access Control policy install

Answer: C

Explanation:
https://sc1.checkpoint.com/documents/R80/CP_R80BC_ThreatPrevention/html_frameset.htm?topic=documents

NEW QUESTION 7
Which tool provides a list of trusted files to the administrator so they can specify to the Threat Prevention blade that these files do not need to be scanned or analyzed?

• A. ThreatWiki
• B. Whitelist Files
• C. AppWiki
• D. IPS Protections

Answer: B

NEW QUESTION 8
Which encryption algorithm is the least secured?

• A. AES-128
• B. AES-256
• C. DES
• D. 3DES

Answer: C

NEW QUESTION 9
The Firewall kernel is replicated multiple times, therefore:

• A. The Firewall kernel only touches the packet if the connection is accelerated
• B. The Firewall can run different policies per core
• C. The Firewall kernel is replicated only with new connections and deletes itself once the connection times out
• D. The Firewall can run the same policy on all cores.

Answer: D

Explanation:
On a Security Gateway with CoreXL enabled, the Firewall kernel is replicated multiple times. Each replicated copy, or instance, runs on one processing core. These instances handle traffic concurrently, and each instance is a complete and independent inspection kernel. When CoreXL is enabled, all the kernel instances in the Security Gateway process traffic through the same interfaces and apply the same security policy.

NEW QUESTION 10
Which is NOT an example of a Check Point API?

• A. Gateway API
• B. Management API
• C. OPSEC SDK
• D. Threat Prevention API

Answer: A

NEW QUESTION 11
During the Check Point Stateful Inspection Process, for packets that do not pass Firewall Kernel Inspection and are rejected by the rule definition, packets are:

• A. Dropped without sending a negative acknowledgment
• B. Dropped without logs and without sending a negative acknowledgment
• C. Dropped with negative acknowledgment
• D. Dropped with logs and without sending a negative acknowledgment

Answer: D

NEW QUESTION 12
How would you deploy TE250X Check Point appliance just for email traffic and in-line mode without a Check Point Security Gateway?

• A. Install appliance TE250X on SpanPort on LAN switch in MTA mode.
• B. Install appliance TE250X in standalone mode and setup MTA.
• C. You can utilize only Check Point Cloud Services for this scenario.
• D. It is not possible, always Check Point SGW is needed to forward emails to SandBlast appliance.

Answer: C

NEW QUESTION 13
After making modifications to the $CVPNDIR/conf/cvpnd.C file, how would you restart the daemon?

• A. cvpnd_restart
• B. cvpnd_restart
• C. cvpnd restart
• D. cvpnrestart

Answer: B

NEW QUESTION 14
To fully enable Dynamic Dispatcher on a Security Gateway:

• A. run fw ctl multik set_mode 9 in Expert mode and then Reboot.
• B. Using cpconfig, update the Dynamic Dispatcher value to “full” under the CoreXL menu.
• C. Edit/proc/interrupts to include multik set_mode 1 at the bottom of the file, save, and reboot.
• D. run fw multik set_mode 1 in Expert mode and then reboot.

Answer: A

NEW QUESTION 15
What command lists all interfaces using Multi-Queue?

• A. cpmq get
• B. show interface all
• C. cpmq set
• D. show multiqueue all

Answer: A

NEW QUESTION 16
SandBlast has several functional components that work together to ensure that attacks are prevented in real-time. Which the following is NOT part of the SandBlast component?

• A. Threat Emulation
• B. Mobile Access
• C. Mail Transfer Agent
• D. Threat Cloud

Answer: C

NEW QUESTION 17
What is the correct order of the default “fw monitor” inspection points?

• A. i, I, o, O
• B. 1, 2, 3, 4
• C. i, o, I, O
• D. I, i, O, o

Answer: C

NEW QUESTION 18
......