Limited Time Discount Offer
30% Off - Ends in 02:00:00


Checkpoint 156-915.71 Dumps

Check Point Certified Security Expert Update Blade
Check Point Certified Security Expert Update Blade

Questions & Answers for Checkpoint 156-915.71

Showing 1-15 of 313 Questions

Question #1 - Topic 1

When using ClusterXl in load sharing, what method is used be default?

A. IPs, SPIs

B. IPs, Ports, SPIs

C. IPs

D. IPs, Ports

Question #2 - Topic 1

After repairing a Smart Workflow session:

A. The session moves to status Repaired and a new session can be started

B. The session moves to status Awaiting Repair and must be resubmitted

C. The session is continued with status Not approved and a new session must be started

D. The session is discarded and a new session is automatically started

Question #3 - Topic 1

Which of the following components receives events and assigns severity levels to the
events; then any defined automatic reactions and adds the events to the Events Data

A. SmartEvent Client

B. SmartEvent Server

C. SmartEvent Correlation Unit

D. SmartEvent Analysis DataServer

Question #4 - Topic 1

You have received an LDAP account unit and confirmed the apply & fetch branches
options works in SSL.VPN, but end users still cannot be authenticated. What is the most
lIKELY causes?

A. The administrator login is incorrect

B. the LDAP server is incorrectly configured.

C. The user is not defined in active directory

D. the LDAP account unit’s login distinguished name is incorrectly configured

Question #5 - Topic 1

You just upgraded to R71 and are using the IPS Software Blade You want to enable all
critical protections while keeping the rate of false positively very low. How can you achieve

A. The new IPS system is based on policies, but it has no ability to calculate or change the confidence level, so it always has a high rate of false positives.

B. This cant be achieved; activating any IPS system always causes a high rate of false positives.

C. The new IPS system is based on policies and gives you the ability to activate all checks with critical severity and a high confidence level.

D. As in SmartDefense, this can be achieved by activating all the critical checks manually.

Question #6 - Topic 1

By default, a standby Security Management Server is automatically synchronized by an
active Security Management Server, when:

A. The Security Policy is saved.

B. The Security Policy is installed.

C. The user database is installed.

D. The standby Security Management Server starts for the first time.

Question #7 - Topic 1

How do you verify the Check Pant kernel running on a firewall?

A. fw ctrl get kernel

B. fw ctrl pstat

C. fw kernel

D. fw ver -k

Question #8 - Topic 1

Which statement is TRUE for route-based VPNs?

A. IP Pool NAT must be configured on each Gateway

B. Route-based VPNs are a form of partial overlap VPN Domain

C. Dynamic-routing protocols are not required

D. Route-based VPNs replace domain-based VPNs

Question #9 - Topic 1

What could the following regular expression be used for in a DLP rule?
$ 9 [0-9] *, [0-9] [0-9] [0-9], [0-9] [0-9]
Select the best answer

A. As a Data Type to prevent programmers from leaking code outside the company

B. As a compound data type representation.

C. As a Data Type to prevent employees from sending an email that contains a complete price-list of nine products

D. As a Data Type to prevent the France Department from leaking salary information to employees

Question #10 - Topic 1

John is configuring a new R17 Gateway cluster but he cannot configure the cluster as Third
Party IP Clustering in Gateway Cluster Properties:

Whats happening?

A. John is not using third party hardware as IP Clustering is part of Check Points IP Appliance.

B. Third Party Clustering is not available for R71 Security Gateways.

C. ClusterXL needs to be unsetected to permit 3nd party clustering configuration.

D. John has an invalid ClusterXL license

Question #11 - Topic 1

In which case is a Sticky Decision Function relevant?

A. Load Sharing - Unicast

B. Load Balancing - Forward

C. High Availability

D. Load Sharing - Multicast

Question #12 - Topic 1

The default port for browser access to the Management Portal is

A. 4433

B. 4343

C. 8080

D. 443

Question #13 - Topic 1

When selecting a backup target using SmartProvisioning, which target is NOT available?


B. Locally on device



Question #14 - Topic 1

Date type = Large file (>500KB)
Source = My organization
Protocol = any
Action = ask user
All other rules are set to detect. User check is enabled and installed on all client machines.

A. when a user uploads a 600 KB file to his yahoo account via web mail (via his browser), he will be prompted by user check

B. When a user sends an e-mail with a small point with a small body and 5 attachments, each of 200 KB to, he will be prompted by user check.

C. When a user sends an email with an attachment larger than 500 KB to, he will be prompted by user check.

D. When a user sends an email with an attachment larger than 500 KB to, he will be prompted by user check.

Question #15 - Topic 1

TotallyCoolSecuirty Company has a large security staff. Bob configured a new IPS
Chicago_Profile for fw-Chicago using Detect mode. After reviewing Matt noticed that fw-
Chicago is not detecting any of the IPS protections that Bob had previously setup. Analyze
the output below and determine how Matt corrects the problem.

A. Matt should assign the fw-Chicago Security Gateway to the Chicago_Profile.

B. Matt should the Chicago_Profile to use Protect mode because Detect mode

C. Matt should re-create the Chicago_Profile and select Active protections manually instead of per the IPS Policy.

D. Matt should activate the Chicago_Profile as it is currently not activated.