156-315.81 CheckPoint Exam Questions and Free Practice Test

Question 115

- (Exam Topic 2)
What are the blades of Threat Prevention?

A. IPS, DLP, AntiVirus, AntiBot, Sandblast Threat Emulation/Extraction

B. DLP, AntiVirus, QoS, AntiBot, Sandblast Threat Emulation/Extraction

C. IPS, AntiVirus, AntiBot

D. IPS, AntiVirus, AntiBot, Sandblast Threat Emulation/Extraction

Correct Answer:D

Question 116

- (Exam Topic 4)
When Identity Awareness is enabled, which identity source(s) is(are) used for Application Control?

A. RADIUS

B. Remote Access and RADIUS

C. AD Query

D. AD Query and Browser-based Authentication

Correct Answer:D
Identity Awareness gets identities from these acquisition sources:

Question 117

- (Exam Topic 2)
When gathering information about a gateway using CPINFO, what information is included or excluded when using the “-x” parameter?

A. Includes the registry

B. Gets information about the specified Virtual System

C. Does not resolve network addresses

D. Output excludes connection table

Correct Answer:B

Question 118

- (Exam Topic 2)
What is the purpose of extended master key extension/session hash?

A. UDP VOIP protocol extension

B. In case of TLS1.x it is a prevention of a Man-in-the-Middle attack/disclosure of the client-server communication

C. Special TCP handshaking extension

D. Supplement DLP data watermark

Correct Answer:B

Question 119

- (Exam Topic 1)
How can SmartView application accessed?

A. http://<Security Management IP Address>/smartview

B. http://:4434/smartview/

C. https:///smartview/

D. https://:4434/smartview/

Correct Answer:C

Question 120

- (Exam Topic 3)
During the Check Point Stateful Inspection Process, for packets that do not pass Firewall Kernel Inspection and are rejected by the rule definition, packets are:

A. Dropped without sending a negative acknowledgment

B. Dropped without logs and without sending a negative acknowledgment

C. Dropped with negative acknowledgment

D. Dropped with logs and without sending a negative acknowledgment

Correct Answer:D

START 156-315.81 EXAM