SlideShare uma empresa Scribd logo

156 515

E
edfina
EducaçãoTecnologia
1 de 11
Baixar para ler offline
      Check Point 156-515 Check Point Certified Security Expert Plus NGX 70 Q&A Version: C9.0                                                                                       www.CertifyMe.com   
      CertifyMe - King of Computer Certification Important Information, Please Read Carefully Other CertifyMe products A) Offline Testing engine Use the offline Testing engine product to practice the questions in an exam environment. B) Study Guide (not available for all exams) Build a foundation of knowledge which will be useful also after passing the exam. Latest Version We are constantly reviewing our products. New material is added and old material is updated. Free updates are available for 90 days after the purchase. You should check your member zone at CertifyMe and update 3-4 days before the scheduled exam date. Here is the procedure to get the latest version: 1.Go towww.certifyme.com 2.Click on Member zone/Log in (right side) 3. Then click My Account 4.The latest versions of all purchased products are downloadable from here. Just click the links. For most updates,it is enough just to print the new questions at the end of the new version, not the whole document. Feedback If you spot a possible improvement then please let us know. We always interested in improving product quality. Feedback should be send to feedback@certifyme.com. You should include the following: Exam number, version, page number, question number, and your login ID. Our experts will answer your mail promptly. Copyright Each PDF file contains a unique serial number associated with your particular name and contact information for security purposes. So if we find out that a particular PDF file is being distributed by you, CertifyMe reserves the right to take legal action against you according to the International Copyright Laws. Explanations This product does not include explanations at the moment. If you are interested in providing explanations for this exam, please contact feedback@certifyme.com.                                                                                       www.CertifyMe.com   
      1. Which files should be acquired from a Windows 2003 Server system crash with a Dr. Watson error? A. drwtsn32.log B. vmcore.log C. core.log D. memory.log E. info.log Answer: A 2. VPN debugging information is written to which of the following files? A. FWDIR/log/ahttpd.elg B. FWDIR/log/fw.elg C. $FWDIR/log/ike.elg D. FWDIR/log/authd.elg E. FWDIR/log/vpn.elg Answer: C 3. fw monitor packets are collected from the kernel in a buffer. What happens if the buffer becomes full? A. The information in the buffer is saved and packet capture continues, with new data stored in the buffer. B. Older packet information is dropped as new packet information is added. C. Packet capture stops. D. All packets in it are deleted, and the buffer begins filling from the beginning. Answer: D 4. Which file provides the data for the host_table output, and is responsible for keeping a record of all internal IPs passing through the internal interfaces of a restricted hosts licensed Security Gateway? A. hosts.h B. external.if C. hosts D. fwd.h E. fwconn.h Answer: D 5. You modified the *def file on your Security Gateway, but the changes were not applied. Why? A. There is more than one *.def file on the Gateway. B. You did not have the proper authority. C. *.def files must be modified on the SmartCenter Server. D. The *.def file on the Gateway is read-only. Answer: C 6. Assume you have a rule allowing HTTP traffic, on port 80, to a specific Web server in a Demilitarized                                                                                       www.CertifyMe.com   
      Zone (DMZ). If an external host port scans the Web server's IP address, what information will be revealed? A. Nothing; the NGX Security Server automatically block all port scans. B. All ports are open on the Security Server. C. All ports are open on the Web server. D. The Web server's file structure is revealed. E. Port 80 is open on the Web server. Answer: E 7. Which of the following types of information should an Administrator use tcpdump to view? A. DECnet traffic analysis B. VLAN trunking analysis C. NAT traffic analysis D. Packet-header analysis E. AppleTalk traffic analysis Answer: D 8. Which statement is true for route based VPNs? A. IP Pool NAT must be configured on each gateway B. Route-based VPNs replace domain-based VPNs C. Route-based VPNs are a form of partial overlap VPN Domain D. Packets are encrypted or decrypted automatically E. Dynamic-routing protocols are not required Answer: E 9. The list below provides all the actions Check Point recommends to troubleshoot a problem with an NGX product. A.List Possible Causes B.Identify the Problem C.Collect Related Information D.Consult Various Reference Sources E.Test Causes Individually and Logically Select the answer that shows the order of the recommended actions that make up Check Point's troubleshooting guidelines? A. B, C, A, E, D B. A, E, B, D, C C. A, B, C, D, E D. B, A, D, E, C E. D, B, A, C, E                                                                                       www.CertifyMe.com   
      Answer: A 10. NGX Wire Mode allows: A. Peer gateways to establish a VPN connection automatically from predefined preshared secrets. B. Administrators to verify that each VPN-1 SecureClient is properly configured, before allowing it access to the protected domain. C. Peer gateways to fail over existing VPN traffic, by avoiding Stateful Inspection. D. Administrators to monitor VPN traffic for troubleshooting purposes. E. Administrators to limit the number of simultaneous VPN connections, to reduce the traffic load passing through a Security Gateway. Answer: C 11. Which of the following commands identifies whether or not a Security Policy is installed or the Security Gateway is operating with the Initial Policy? A. fw monitor B. cp policy C. cp stat D. fw policy E. fw stat Answer: E 12. A SecuRemote/SecureClient tunnel test uses which port? A. UDP 18233 B. UDP 2746 C. UDP 18234 D. TCP 18231 E. UDP 18321 Answer: C 13. Which of the following vpn debug options purges ike.elg and vpnd.elg, and creates a time stamp before starting ike debug and vpn debug at the same time? A. ike on B. timeon C. trunc D. ikefail E. mon Answer: C 14. Gus is troubleshooting a problem with SMTP. He has enabled debugging on his Security Gateway and needs to copy the *.elg files into an archive to send to Check Point Support. Which of the following files                                                                                       www.CertifyMe.com   
      does Gus NOT need to send? A. fwd.elg B. mdq.elg C. diffserv.elg D. asmtpd.elg Answer: C 15. How can you view cpinfo on a SecurePlatform Pro machine? A. snoop -i B. infotab C. tcpdump D. Text editor, such as vi E. infoview Answer: D 16. When VPN-1 NGX starts after reboot, with no installed Security Policy, which of these occurs? A. All traffic except HTTP connections is blocked. B. All traffic except SmartDefense Console connections is blocked. C. All traffic is blocked. D. All traffic except SmartConsole/SmartCenter Server connections is blocked. E. All traffic is allowed. Answer: D 17. Which of the following commands would you run to debug a VPN connection? A. debug vpn ike B. debug vpn ikeon C. vpn debug ike D. debug vpn ike on E. vpn debug ikeon Answer: E 18. Which one of these is a temporary pointer log file? A. $FWDIR/log/xx.logptr B. $FWDIR/log/xx.log C. $FWDIR/log/xx.logaccount_ptr D. $FWDIR/log/xx.logLuuidDB Answer: D 19. When collecting information relating to the perceived problem, what is the most important question to ask?                                                                                       www.CertifyMe.com   
      A. Is this problem repeatable? B. Is this problem software or hardware related? C. Under what circumstances does this problem occur? D. What action or state am I trying to achieve? E. Does the problem appear random or can you establish a pattern? Answer: C 20. The virtual machine inspects each packet at the following points: -Before the virtual machine, in the inbound direction (i or PREIN) -After the virtual machine, in the inbound direction (I or POSTIN) -Before the virtual machine, in the outbound direction (o or PREOUT) -After the virtual machine, in the outbound direction (O or POSTOUT) If Ethereal displays a packet with i, I, o, and O entries, what does that likely indicate? A. The packet was rejected by the Rule Base. B. The packet was destined for the Gateway. C. Nothing unusual; the o and O entries only appear if there is a kernel-level error. D. The packet was rerouted by the Gateway's OS. E. The packet arrived at the kernel and left the Security Gateway successfully. Answer: E 21. To stop the sr_service debug process, you must first stop VPN-1 SecureClient, delete which of the following files, and restart SecureClient? A. sr_auth.all B. sr_topo.all C. sr_tde.all D. sr_service.all E. sr_users.all Answer: C 22. Which of the following fw monitor commands only captures traffic between IP addresses 192.168.11.1 and 10.10.10.1? A. fw monitor -e "accept src=192.168.11.1 or dst=192.168.11.1 or src=10.10.10.1 or dst=10.10.10.1;" B. fw monitor -e "accept src=192.168.11.1 or dst=192.168.11.1; src=10.10.10.1 or dst=10.10.10.1;" C. fw monitor -e "accept src=192.168.111 and dst=192.168.11.1; src=10.10.10.1 and dst=10.10.10.1;" D. fw monitor -e "accept src=192.168.11.1 or dst=192.168.11.1; and src=10.10.10.1 or dst=10.10.10.1;" E. fw monitor -e "accept (src=192.168.11.1 and dst=10.10.10.1) or (src=10.10.10.1 and dst=192.168.11.1);" Answer: E 23. To start both vpnd.elg and ike.elg, which single vpn debug command would you use?                                                                                       www.CertifyMe.com   
      A. vpn debug vpnd.elg +ike B. vpn debug ikeinit C. vpn debug ikeon D. vpn debug trunc E. vpn tu Answer: D 24. Which of the following explanations best describes the audit log file xx.adtloginitial_ptr? A. Pointers to the beginning of each accounting record B. Additional temporary pointer file C. Pointers to the beginning of each log chain D. Audit log records E. Pointers to the beginning of each log record Answer: C 25. If you run only fw monitor without any parameters, where does the output display? A. In /tmp/log/monitor.out B. In $FWDIR/bin C. In /var/log/monitor.out D. On the console E. In /var/adm/monitor.out Answer: D 26. Which of the following commands can you run to view packet flow of a VPN-1 SecuRemote/SecureClient connection? A. cpd monitor B. vpn monitor C. fw monitor D. srfw monitor E. sc monitor Answer: D 27. Steve tries to configure Directional VPN Rule Match in the Rule Base. However, the Match column does not have the option to see the Directional Match. Steve sees the following screen. What is the problem?                                                                                       www.CertifyMe.com   
      A. Steve must enable directional_match(true) in the objects_5_0.C file on SmartCenter Server. B. Steve must enable Advanced Routing on each Security Gateway. C. Steve must enable VPN Directional Match on the gateway object's VPN tab. D. Steve must enable VPN Directional Match on the VPN advanced screen, in Global properties. E. Steve must enable a dynamic-routing protocol, such as OSPF, on the Gateways. Answer: D 28. The output of tcpdump is a binary file. Which of the following commands will write the tcpdump file into an ASCII file through std_out? A. tcpdump <file_name> &> <file_name> B. tcpdump <file_name> ?> <file_name> C. tcpdump <file_name> %> <file_name> D. tcpdump <file_name> > <file_name> E. tcpdump <file_name> *> <file_name> Answer: A 29. Setting snaplen to 0 will capture how much of the packet data? A. None of the packet. B. The whole packet. C. The first octet of the packet header. D. The first protocol level of the packet. Answer: B                                                                                       www.CertifyMe.com   
      30. Pulling Certificates from an ICA uses which port? A. Port 18211 B. Port 18212 C. Port 18209 D. Port 18210 Answer: D 31. How do you run fw ctl debug, to see all information about a cluster? A. fw ctl debug cluster all fw ctl debug > output fw ctl debug uf 1024 B. fw ctl pstat fw ctl debug all fw ctl debug > out C. fw ctl debug uf 1024 fw ctl debug cluster all fw ctl kdebug > output D. fw ctl debug on fw ctl debug cluster all fw ctl kdebug > output E. fw ctl debug on fw ctl debug uf 1024 fw ctl debug cluster all fw ctl kdebug > output Answer: C 32. What does it indicate when a cluster state is "Active attention"? A. The cluster member is booting: ClusterXL is running, but VPN-1/ NGX is not yet ready. B. Both cluster members are up and ready. C. Cluster members are running different versions: The newer version member is in the ready state, while the older version member is in the active state. D. Traffic is being passed, but a problem has been detected: There are no other active members in the cluster. Answer: D 33. Which of these issues would you use fw debug fwm as the primary debugging command for troubleshooting? A. Policy save issues                                                                                       www.CertifyMe.com   
Pass Your Exam at First Attempt with 100% Pass Guarantee Buy Full Version of 156-515 Exam at http://www.certifyme.com/156-515.htm

Recomendados

000 235
000 235000 235
000 235ambrevan87
 
500 006-1
500 006-1500 006-1
500 006-1Audwell Gaka
 
The Art of defence: How vulnerabilites help shape security features and mitig...
The Art of defence: How vulnerabilites help shape security features and mitig...The Art of defence: How vulnerabilites help shape security features and mitig...
The Art of defence: How vulnerabilites help shape security features and mitig...Priyanka Aash
 
nullcon 2010 - The evil karmetasploit upgrade
nullcon 2010 - The evil karmetasploit upgradenullcon 2010 - The evil karmetasploit upgrade
nullcon 2010 - The evil karmetasploit upgraden|u - The Open Security Community
 
Civil Rights Movement
Civil Rights MovementCivil Rights Movement
Civil Rights MovementEmily_LeCrone
 
Progetto giv
Progetto givProgetto giv
Progetto givausilaragiannaanto
 
Street Games USA Rules Book
Street Games USA Rules BookStreet Games USA Rules Book
Street Games USA Rules Bookstreetgamesusa
 
The eurozone is working just fine…... as far as Germany is concerned
The eurozone is working just fine…... as far as Germany is concernedThe eurozone is working just fine…... as far as Germany is concerned
The eurozone is working just fine…... as far as Germany is concernedYannick Naud
 

Recomendados

000 235
000 235000 235
000 235ambrevan87
 
500 006-1
500 006-1500 006-1
500 006-1Audwell Gaka
 
The Art of defence: How vulnerabilites help shape security features and mitig...
The Art of defence: How vulnerabilites help shape security features and mitig...The Art of defence: How vulnerabilites help shape security features and mitig...
The Art of defence: How vulnerabilites help shape security features and mitig...Priyanka Aash
 
nullcon 2010 - The evil karmetasploit upgrade
nullcon 2010 - The evil karmetasploit upgradenullcon 2010 - The evil karmetasploit upgrade
nullcon 2010 - The evil karmetasploit upgraden|u - The Open Security Community
 
Civil Rights Movement
Civil Rights MovementCivil Rights Movement
Civil Rights MovementEmily_LeCrone
 
Progetto giv
Progetto givProgetto giv
Progetto givausilaragiannaanto
 
Street Games USA Rules Book
Street Games USA Rules BookStreet Games USA Rules Book
Street Games USA Rules Bookstreetgamesusa
 
The eurozone is working just fine…... as far as Germany is concerned
The eurozone is working just fine…... as far as Germany is concernedThe eurozone is working just fine…... as far as Germany is concerned
The eurozone is working just fine…... as far as Germany is concernedYannick Naud
 
Feratarska cortina 2012
Feratarska cortina 2012Feratarska cortina 2012
Feratarska cortina 2012Solatar
 
Alternative energy sources
Alternative energy sourcesAlternative energy sources
Alternative energy sourcesLetter1234
 
Happy Mothers Day
Happy Mothers DayHappy Mothers Day
Happy Mothers Daymcbs101
 
Smart Hiring using Linkedin
Smart Hiring using LinkedinSmart Hiring using Linkedin
Smart Hiring using Linkedinmanishwisestep
 
Diccionario de definiciones medicas breves (word 2007, 2010)
Diccionario de definiciones medicas breves (word 2007, 2010)Diccionario de definiciones medicas breves (word 2007, 2010)
Diccionario de definiciones medicas breves (word 2007, 2010)Es Tu Arte
 
Demographic in Nordic Countries
Demographic in Nordic CountriesDemographic in Nordic Countries
Demographic in Nordic CountriesYannick Naud
 
What the Tweet? Beyond Twitter basics.
What the Tweet? Beyond Twitter basics.What the Tweet? Beyond Twitter basics.
What the Tweet? Beyond Twitter basics.Misty Montano
 
20141211 테크앤로 개정 전자금융거래법 대응전략 (4/4)
20141211 테크앤로 개정 전자금융거래법 대응전략 (4/4)20141211 테크앤로 개정 전자금융거래법 대응전략 (4/4)
20141211 테크앤로 개정 전자금융거래법 대응전략 (4/4)TEK & LAW, LLP
 
기업의 정보보호(영업비밀, 개인정보보호) 체계 구축을 위한 세미나
기업의 정보보호(영업비밀, 개인정보보호) 체계 구축을 위한 세미나기업의 정보보호(영업비밀, 개인정보보호) 체계 구축을 위한 세미나
기업의 정보보호(영업비밀, 개인정보보호) 체계 구축을 위한 세미나TEK & LAW, LLP
 
MYOGRIPPER
MYOGRIPPERMYOGRIPPER
MYOGRIPPERMIRA
 
Inmunologia 01
Inmunologia 01Inmunologia 01
Inmunologia 01David Escofet Marías
 
Digital Green Overview
Digital Green OverviewDigital Green Overview
Digital Green OverviewDigital Green
 
Corporate presentation
Corporate presentationCorporate presentation
Corporate presentationgreystarresources
 
JTT Product Portfolio 2012 03 02
JTT Product Portfolio 2012 03 02JTT Product Portfolio 2012 03 02
JTT Product Portfolio 2012 03 02jttelectronics
 
SJOG Subiaco Hospital: Professional Practice
SJOG Subiaco Hospital: Professional PracticeSJOG Subiaco Hospital: Professional Practice
SJOG Subiaco Hospital: Professional PracticeSJG Subiaco Hospital
 
Digital vs. digitized content
Digital vs. digitized contentDigital vs. digitized content
Digital vs. digitized contentTopCreations
 
หน่วยประมวลผลของเครื่องคอมพิวเตอร์ แอน
หน่วยประมวลผลของเครื่องคอมพิวเตอร์ แอนหน่วยประมวลผลของเครื่องคอมพิวเตอร์ แอน
หน่วยประมวลผลของเครื่องคอมพิวเตอร์ แอนPheeranan Thetkham
 
หน่วยประมวลผลของเครื่องคอมพิวเตอร์ แอน
หน่วยประมวลผลของเครื่องคอมพิวเตอร์ แอนหน่วยประมวลผลของเครื่องคอมพิวเตอร์ แอน
หน่วยประมวลผลของเครื่องคอมพิวเตอร์ แอนPheeranan Thetkham
 
เทคโนโลยี สารสนเทศ
เทคโนโลยี สารสนเทศเทคโนโลยี สารสนเทศ
เทคโนโลยี สารสนเทศPheeranan Thetkham
 
Science
ScienceScience
Sciencekelseyn
 
000 236
000 236000 236
000 236ambrevan87
 
156 815
156 815156 815
156 815edfina
 

Mais conteúdo relacionado

Destaque

Feratarska cortina 2012
Feratarska cortina 2012Feratarska cortina 2012
Feratarska cortina 2012Solatar
 
Alternative energy sources
Alternative energy sourcesAlternative energy sources
Alternative energy sourcesLetter1234
 
Happy Mothers Day
Happy Mothers DayHappy Mothers Day
Happy Mothers Daymcbs101
 
Smart Hiring using Linkedin
Smart Hiring using LinkedinSmart Hiring using Linkedin
Smart Hiring using Linkedinmanishwisestep
 
Diccionario de definiciones medicas breves (word 2007, 2010)
Diccionario de definiciones medicas breves (word 2007, 2010)Diccionario de definiciones medicas breves (word 2007, 2010)
Diccionario de definiciones medicas breves (word 2007, 2010)Es Tu Arte
 
Demographic in Nordic Countries
Demographic in Nordic CountriesDemographic in Nordic Countries
Demographic in Nordic CountriesYannick Naud
 
What the Tweet? Beyond Twitter basics.
What the Tweet? Beyond Twitter basics.What the Tweet? Beyond Twitter basics.
What the Tweet? Beyond Twitter basics.Misty Montano
 
20141211 테크앤로 개정 전자금융거래법 대응전략 (4/4)
20141211 테크앤로 개정 전자금융거래법 대응전략 (4/4)20141211 테크앤로 개정 전자금융거래법 대응전략 (4/4)
20141211 테크앤로 개정 전자금융거래법 대응전략 (4/4)TEK & LAW, LLP
 
기업의 정보보호(영업비밀, 개인정보보호) 체계 구축을 위한 세미나
기업의 정보보호(영업비밀, 개인정보보호) 체계 구축을 위한 세미나기업의 정보보호(영업비밀, 개인정보보호) 체계 구축을 위한 세미나
기업의 정보보호(영업비밀, 개인정보보호) 체계 구축을 위한 세미나TEK & LAW, LLP
 
MYOGRIPPER
MYOGRIPPERMYOGRIPPER
MYOGRIPPERMIRA
 
Digital Green Overview
Digital Green OverviewDigital Green Overview
Digital Green OverviewDigital Green
 
JTT Product Portfolio 2012 03 02
JTT Product Portfolio 2012 03 02JTT Product Portfolio 2012 03 02
JTT Product Portfolio 2012 03 02jttelectronics
 
SJOG Subiaco Hospital: Professional Practice
SJOG Subiaco Hospital: Professional PracticeSJOG Subiaco Hospital: Professional Practice
SJOG Subiaco Hospital: Professional PracticeSJG Subiaco Hospital
 
Digital vs. digitized content
Digital vs. digitized contentDigital vs. digitized content
Digital vs. digitized contentTopCreations
 
หน่วยประมวลผลของเครื่องคอมพิวเตอร์ แอน
หน่วยประมวลผลของเครื่องคอมพิวเตอร์ แอนหน่วยประมวลผลของเครื่องคอมพิวเตอร์ แอน
หน่วยประมวลผลของเครื่องคอมพิวเตอร์ แอนPheeranan Thetkham
 
หน่วยประมวลผลของเครื่องคอมพิวเตอร์ แอน
หน่วยประมวลผลของเครื่องคอมพิวเตอร์ แอนหน่วยประมวลผลของเครื่องคอมพิวเตอร์ แอน
หน่วยประมวลผลของเครื่องคอมพิวเตอร์ แอนPheeranan Thetkham
 
เทคโนโลยี สารสนเทศ
เทคโนโลยี สารสนเทศเทคโนโลยี สารสนเทศ
เทคโนโลยี สารสนเทศPheeranan Thetkham
 

Destaque (20)

Feratarska cortina 2012
Feratarska cortina 2012Feratarska cortina 2012
Feratarska cortina 2012
 
Alternative energy sources
Alternative energy sourcesAlternative energy sources
Alternative energy sources
 
Happy Mothers Day
Happy Mothers DayHappy Mothers Day
Happy Mothers Day
 
Smart Hiring using Linkedin
Smart Hiring using LinkedinSmart Hiring using Linkedin
Smart Hiring using Linkedin
 
Diccionario de definiciones medicas breves (word 2007, 2010)
Diccionario de definiciones medicas breves (word 2007, 2010)Diccionario de definiciones medicas breves (word 2007, 2010)
Diccionario de definiciones medicas breves (word 2007, 2010)
 
Demographic in Nordic Countries
Demographic in Nordic CountriesDemographic in Nordic Countries
Demographic in Nordic Countries
 
What the Tweet? Beyond Twitter basics.
What the Tweet? Beyond Twitter basics.What the Tweet? Beyond Twitter basics.
What the Tweet? Beyond Twitter basics.
 
20141211 테크앤로 개정 전자금융거래법 대응전략 (4/4)
20141211 테크앤로 개정 전자금융거래법 대응전략 (4/4)20141211 테크앤로 개정 전자금융거래법 대응전략 (4/4)
20141211 테크앤로 개정 전자금융거래법 대응전략 (4/4)
 
기업의 정보보호(영업비밀, 개인정보보호) 체계 구축을 위한 세미나
기업의 정보보호(영업비밀, 개인정보보호) 체계 구축을 위한 세미나기업의 정보보호(영업비밀, 개인정보보호) 체계 구축을 위한 세미나
기업의 정보보호(영업비밀, 개인정보보호) 체계 구축을 위한 세미나
 
MYOGRIPPER
MYOGRIPPERMYOGRIPPER
MYOGRIPPER
 
Inmunologia 01
Inmunologia 01Inmunologia 01
Inmunologia 01
 
Digital Green Overview
Digital Green OverviewDigital Green Overview
Digital Green Overview
 
Corporate presentation
Corporate presentationCorporate presentation
Corporate presentation
 
JTT Product Portfolio 2012 03 02
JTT Product Portfolio 2012 03 02JTT Product Portfolio 2012 03 02
JTT Product Portfolio 2012 03 02
 
SJOG Subiaco Hospital: Professional Practice
SJOG Subiaco Hospital: Professional PracticeSJOG Subiaco Hospital: Professional Practice
SJOG Subiaco Hospital: Professional Practice
 
Digital vs. digitized content
Digital vs. digitized contentDigital vs. digitized content
Digital vs. digitized content
 
หน่วยประมวลผลของเครื่องคอมพิวเตอร์ แอน
หน่วยประมวลผลของเครื่องคอมพิวเตอร์ แอนหน่วยประมวลผลของเครื่องคอมพิวเตอร์ แอน
หน่วยประมวลผลของเครื่องคอมพิวเตอร์ แอน
 
หน่วยประมวลผลของเครื่องคอมพิวเตอร์ แอน
หน่วยประมวลผลของเครื่องคอมพิวเตอร์ แอนหน่วยประมวลผลของเครื่องคอมพิวเตอร์ แอน
หน่วยประมวลผลของเครื่องคอมพิวเตอร์ แอน
 
เทคโนโลยี สารสนเทศ
เทคโนโลยี สารสนเทศเทคโนโลยี สารสนเทศ
เทคโนโลยี สารสนเทศ
 
Science
ScienceScience
Science
 

Semelhante a 156 515

156 815
156 815156 815
156 815edfina
 
156 816
156 816156 816
156 816edfina
 
Check Point CCSA R81 156-215.81 Practice Test Questions
Check Point CCSA R81 156-215.81 Practice Test QuestionsCheck Point CCSA R81 156-215.81 Practice Test Questions
Check Point CCSA R81 156-215.81 Practice Test QuestionsPassquestionExamTrai
 
EE0-515 Exam Questions
EE0-515 Exam QuestionsEE0-515 Exam Questions
EE0-515 Exam Questionsadbil98
 
Free Check Point CCSE R80 156-315.80 Real Questions
Free Check Point CCSE R80 156-315.80 Real QuestionsFree Check Point CCSE R80 156-315.80 Real Questions
Free Check Point CCSE R80 156-315.80 Real QuestionswilliamLeo13
 
2022 Update PCNSE Certification Exam Questions
2022 Update PCNSE Certification Exam Questions2022 Update PCNSE Certification Exam Questions
2022 Update PCNSE Certification Exam QuestionswilliamLeo13
 
Cv0 001-q&amp;a-demo-cert magic
Cv0 001-q&amp;a-demo-cert magicCv0 001-q&amp;a-demo-cert magic
Cv0 001-q&amp;a-demo-cert magicjenie Emmons
 
St0 029 question answers
St0 029 question answersSt0 029 question answers
St0 029 question answersMarcoMCervantes
 
Real Fortinet NSE4_FGT-7.2 Exam Questions - Start Preparing For NSE4_FGT-7.2 ...
Real Fortinet NSE4_FGT-7.2 Exam Questions - Start Preparing For NSE4_FGT-7.2 ...Real Fortinet NSE4_FGT-7.2 Exam Questions - Start Preparing For NSE4_FGT-7.2 ...
Real Fortinet NSE4_FGT-7.2 Exam Questions - Start Preparing For NSE4_FGT-7.2 ...EleanorSun3
 
PCNSC_Jan_2023-v1.1.pdf
PCNSC_Jan_2023-v1.1.pdfPCNSC_Jan_2023-v1.1.pdf
PCNSC_Jan_2023-v1.1.pdfCCIEHOMER
 
Ultimate PCNSE Practice Dumps by Test4Parctice.pdf
Ultimate PCNSE Practice Dumps by Test4Parctice.pdfUltimate PCNSE Practice Dumps by Test4Parctice.pdf
Ultimate PCNSE Practice Dumps by Test4Parctice.pdfMike Robert
 
Checkpoint 156-315.80 free demo download
Checkpoint 156-315.80 free demo downloadCheckpoint 156-315.80 free demo download
Checkpoint 156-315.80 free demo downloadJeannieHeldt
 
Exam JK0-802 CompTIA A+ Certification Exam
Exam JK0-802 CompTIA A+ Certification Exam Exam JK0-802 CompTIA A+ Certification Exam
Exam JK0-802 CompTIA A+ Certification Exam annajones104
 
CySA+_CS0-002_May_2023-v1.1.pdf
CySA+_CS0-002_May_2023-v1.1.pdfCySA+_CS0-002_May_2023-v1.1.pdf
CySA+_CS0-002_May_2023-v1.1.pdfCCIEHOMER
 
400-351 Exam-CCIE Wireless
400-351 Exam-CCIE Wireless 400-351 Exam-CCIE Wireless
400-351 Exam-CCIE Wireless Isabella789
 
ccnp-routing-and-switching
ccnp-routing-and-switchingccnp-routing-and-switching
ccnp-routing-and-switchingMillion Gizaw
 

Semelhante a 156 515 (20)

000 236
000 236000 236
000 236
 
156 815
156 815156 815
156 815
 
156 816
156 816156 816
156 816
 
Check Point CCSA R81 156-215.81 Practice Test Questions
Check Point CCSA R81 156-215.81 Practice Test QuestionsCheck Point CCSA R81 156-215.81 Practice Test Questions
Check Point CCSA R81 156-215.81 Practice Test Questions
 
EE0-515 Exam Questions
EE0-515 Exam QuestionsEE0-515 Exam Questions
EE0-515 Exam Questions
 
Free Check Point CCSE R80 156-315.80 Real Questions
Free Check Point CCSE R80 156-315.80 Real QuestionsFree Check Point CCSE R80 156-315.80 Real Questions
Free Check Point CCSE R80 156-315.80 Real Questions
 
2022 Update PCNSE Certification Exam Questions
2022 Update PCNSE Certification Exam Questions2022 Update PCNSE Certification Exam Questions
2022 Update PCNSE Certification Exam Questions
 
Cv0 001-q&amp;a-demo-cert magic
Cv0 001-q&amp;a-demo-cert magicCv0 001-q&amp;a-demo-cert magic
Cv0 001-q&amp;a-demo-cert magic
 
St0 029 question answers
St0 029 question answersSt0 029 question answers
St0 029 question answers
 
Real Fortinet NSE4_FGT-7.2 Exam Questions - Start Preparing For NSE4_FGT-7.2 ...
Real Fortinet NSE4_FGT-7.2 Exam Questions - Start Preparing For NSE4_FGT-7.2 ...Real Fortinet NSE4_FGT-7.2 Exam Questions - Start Preparing For NSE4_FGT-7.2 ...
Real Fortinet NSE4_FGT-7.2 Exam Questions - Start Preparing For NSE4_FGT-7.2 ...
 
Nse4 fgt 6.0
Nse4 fgt 6.0Nse4 fgt 6.0
Nse4 fgt 6.0
 
PCNSC_Jan_2023-v1.1.pdf
PCNSC_Jan_2023-v1.1.pdfPCNSC_Jan_2023-v1.1.pdf
PCNSC_Jan_2023-v1.1.pdf
 
Ultimate PCNSE Practice Dumps by Test4Parctice.pdf
Ultimate PCNSE Practice Dumps by Test4Parctice.pdfUltimate PCNSE Practice Dumps by Test4Parctice.pdf
Ultimate PCNSE Practice Dumps by Test4Parctice.pdf
 
Checkpoint 156-315.80 free demo download
Checkpoint 156-315.80 free demo downloadCheckpoint 156-315.80 free demo download
Checkpoint 156-315.80 free demo download
 
000 252
000 252000 252
000 252
 
Exam JK0-802 CompTIA A+ Certification Exam
Exam JK0-802 CompTIA A+ Certification Exam Exam JK0-802 CompTIA A+ Certification Exam
Exam JK0-802 CompTIA A+ Certification Exam
 
CySA+_CS0-002_May_2023-v1.1.pdf
CySA+_CS0-002_May_2023-v1.1.pdfCySA+_CS0-002_May_2023-v1.1.pdf
CySA+_CS0-002_May_2023-v1.1.pdf
 
400-351 Exam-CCIE Wireless
400-351 Exam-CCIE Wireless 400-351 Exam-CCIE Wireless
400-351 Exam-CCIE Wireless
 
312 50-demo
312 50-demo312 50-demo
312 50-demo
 
ccnp-routing-and-switching
ccnp-routing-and-switchingccnp-routing-and-switching
ccnp-routing-and-switching
 

Último

ISYU TUNGKOL SA SEKSWLADIDA (ISSUE ABOUT SEXUALITY
ISYU TUNGKOL SA SEKSWLADIDA (ISSUE ABOUT SEXUALITYISYU TUNGKOL SA SEKSWLADIDA (ISSUE ABOUT SEXUALITY
ISYU TUNGKOL SA SEKSWLADIDA (ISSUE ABOUT SEXUALITYKayeClaireEstoconing
 
GRADE 4 - SUMMATIVE TEST QUARTER 4 ALL SUBJECTS
GRADE 4 - SUMMATIVE TEST QUARTER 4 ALL SUBJECTSGRADE 4 - SUMMATIVE TEST QUARTER 4 ALL SUBJECTS
GRADE 4 - SUMMATIVE TEST QUARTER 4 ALL SUBJECTSJoshuaGantuangco2
 
ACC 2024 Chronicles. Cardiology. Exam.pdf
ACC 2024 Chronicles. Cardiology. Exam.pdfACC 2024 Chronicles. Cardiology. Exam.pdf
ACC 2024 Chronicles. Cardiology. Exam.pdfSpandanaRallapalli
 
Karra SKD Conference Presentation Revised.pptx
Karra SKD Conference Presentation Revised.pptxKarra SKD Conference Presentation Revised.pptx
Karra SKD Conference Presentation Revised.pptxAshokKarra1
 
Like-prefer-love -hate+verb+ing & silent letters & citizenship text.pdf
Like-prefer-love -hate+verb+ing & silent letters & citizenship text.pdfLike-prefer-love -hate+verb+ing & silent letters & citizenship text.pdf
Like-prefer-love -hate+verb+ing & silent letters & citizenship text.pdfMr Bounab Samir
 
Procuring digital preservation CAN be quick and painless with our new dynamic...
Procuring digital preservation CAN be quick and painless with our new dynamic...Procuring digital preservation CAN be quick and painless with our new dynamic...
Procuring digital preservation CAN be quick and painless with our new dynamic...Jisc
 
Transaction Management in Database Management System
Transaction Management in Database Management SystemTransaction Management in Database Management System
Transaction Management in Database Management SystemChristalin Nelson
 
Difference Between Search & Browse Methods in Odoo 17
Difference Between Search & Browse Methods in Odoo 17Difference Between Search & Browse Methods in Odoo 17
Difference Between Search & Browse Methods in Odoo 17Celine George
 
Culture Uniformity or Diversity IN SOCIOLOGY.pptx
Culture Uniformity or Diversity IN SOCIOLOGY.pptxCulture Uniformity or Diversity IN SOCIOLOGY.pptx
Culture Uniformity or Diversity IN SOCIOLOGY.pptxPoojaSen20
 
Global Lehigh Strategic Initiatives (without descriptions)
Global Lehigh Strategic Initiatives (without descriptions)Global Lehigh Strategic Initiatives (without descriptions)
Global Lehigh Strategic Initiatives (without descriptions)cama23
 
What is Model Inheritance in Odoo 17 ERP
What is Model Inheritance in Odoo 17 ERPWhat is Model Inheritance in Odoo 17 ERP
What is Model Inheritance in Odoo 17 ERPCeline George
 
Grade 9 Quarter 4 Dll Grade 9 Quarter 4 DLL.pdf
Grade 9 Quarter 4 Dll Grade 9 Quarter 4 DLL.pdfGrade 9 Quarter 4 Dll Grade 9 Quarter 4 DLL.pdf
Grade 9 Quarter 4 Dll Grade 9 Quarter 4 DLL.pdfJemuel Francisco
 
Influencing policy (training slides from Fast Track Impact)
Influencing policy (training slides from Fast Track Impact)Influencing policy (training slides from Fast Track Impact)
Influencing policy (training slides from Fast Track Impact)Mark Reed
 
Choosing the Right CBSE School A Comprehensive Guide for Parents
Choosing the Right CBSE School A Comprehensive Guide for ParentsChoosing the Right CBSE School A Comprehensive Guide for Parents
Choosing the Right CBSE School A Comprehensive Guide for Parentsnavabharathschool99
 
call girls in Kamla Market (DELHI) 🔝 >༒9953330565🔝 genuine Escort Service 🔝✔️✔️
call girls in Kamla Market (DELHI) 🔝 >༒9953330565🔝 genuine Escort Service 🔝✔️✔️call girls in Kamla Market (DELHI) 🔝 >༒9953330565🔝 genuine Escort Service 🔝✔️✔️
call girls in Kamla Market (DELHI) 🔝 >༒9953330565🔝 genuine Escort Service 🔝✔️✔️9953056974 Low Rate Call Girls In Saket, Delhi NCR
 
Keynote by Prof. Wurzer at Nordex about IP-design
Keynote by Prof. Wurzer at Nordex about IP-designKeynote by Prof. Wurzer at Nordex about IP-design
Keynote by Prof. Wurzer at Nordex about IP-designMIPLM
 
Barangay Council for the Protection of Children (BCPC) Orientation.pptx
Barangay Council for the Protection of Children (BCPC) Orientation.pptxBarangay Council for the Protection of Children (BCPC) Orientation.pptx
Barangay Council for the Protection of Children (BCPC) Orientation.pptxCarlos105
 

Último (20)

ISYU TUNGKOL SA SEKSWLADIDA (ISSUE ABOUT SEXUALITY
ISYU TUNGKOL SA SEKSWLADIDA (ISSUE ABOUT SEXUALITYISYU TUNGKOL SA SEKSWLADIDA (ISSUE ABOUT SEXUALITY
ISYU TUNGKOL SA SEKSWLADIDA (ISSUE ABOUT SEXUALITY
 
GRADE 4 - SUMMATIVE TEST QUARTER 4 ALL SUBJECTS
GRADE 4 - SUMMATIVE TEST QUARTER 4 ALL SUBJECTSGRADE 4 - SUMMATIVE TEST QUARTER 4 ALL SUBJECTS
GRADE 4 - SUMMATIVE TEST QUARTER 4 ALL SUBJECTS
 
YOUVE GOT EMAIL_FINALS_EL_DORADO_2024.pptx
YOUVE GOT EMAIL_FINALS_EL_DORADO_2024.pptxYOUVE GOT EMAIL_FINALS_EL_DORADO_2024.pptx
YOUVE GOT EMAIL_FINALS_EL_DORADO_2024.pptx
 
ACC 2024 Chronicles. Cardiology. Exam.pdf
ACC 2024 Chronicles. Cardiology. Exam.pdfACC 2024 Chronicles. Cardiology. Exam.pdf
ACC 2024 Chronicles. Cardiology. Exam.pdf
 
LEFT_ON_C'N_ PRELIMS_EL_DORADO_2024.pptx
LEFT_ON_C'N_ PRELIMS_EL_DORADO_2024.pptxLEFT_ON_C'N_ PRELIMS_EL_DORADO_2024.pptx
LEFT_ON_C'N_ PRELIMS_EL_DORADO_2024.pptx
 
Karra SKD Conference Presentation Revised.pptx
Karra SKD Conference Presentation Revised.pptxKarra SKD Conference Presentation Revised.pptx
Karra SKD Conference Presentation Revised.pptx
 
Like-prefer-love -hate+verb+ing & silent letters & citizenship text.pdf
Like-prefer-love -hate+verb+ing & silent letters & citizenship text.pdfLike-prefer-love -hate+verb+ing & silent letters & citizenship text.pdf
Like-prefer-love -hate+verb+ing & silent letters & citizenship text.pdf
 
Procuring digital preservation CAN be quick and painless with our new dynamic...
Procuring digital preservation CAN be quick and painless with our new dynamic...Procuring digital preservation CAN be quick and painless with our new dynamic...
Procuring digital preservation CAN be quick and painless with our new dynamic...
 
Transaction Management in Database Management System
Transaction Management in Database Management SystemTransaction Management in Database Management System
Transaction Management in Database Management System
 
Difference Between Search & Browse Methods in Odoo 17
Difference Between Search & Browse Methods in Odoo 17Difference Between Search & Browse Methods in Odoo 17
Difference Between Search & Browse Methods in Odoo 17
 
Culture Uniformity or Diversity IN SOCIOLOGY.pptx
Culture Uniformity or Diversity IN SOCIOLOGY.pptxCulture Uniformity or Diversity IN SOCIOLOGY.pptx
Culture Uniformity or Diversity IN SOCIOLOGY.pptx
 
Global Lehigh Strategic Initiatives (without descriptions)
Global Lehigh Strategic Initiatives (without descriptions)Global Lehigh Strategic Initiatives (without descriptions)
Global Lehigh Strategic Initiatives (without descriptions)
 
What is Model Inheritance in Odoo 17 ERP
What is Model Inheritance in Odoo 17 ERPWhat is Model Inheritance in Odoo 17 ERP
What is Model Inheritance in Odoo 17 ERP
 
Grade 9 Quarter 4 Dll Grade 9 Quarter 4 DLL.pdf
Grade 9 Quarter 4 Dll Grade 9 Quarter 4 DLL.pdfGrade 9 Quarter 4 Dll Grade 9 Quarter 4 DLL.pdf
Grade 9 Quarter 4 Dll Grade 9 Quarter 4 DLL.pdf
 
Influencing policy (training slides from Fast Track Impact)
Influencing policy (training slides from Fast Track Impact)Influencing policy (training slides from Fast Track Impact)
Influencing policy (training slides from Fast Track Impact)
 
Choosing the Right CBSE School A Comprehensive Guide for Parents
Choosing the Right CBSE School A Comprehensive Guide for ParentsChoosing the Right CBSE School A Comprehensive Guide for Parents
Choosing the Right CBSE School A Comprehensive Guide for Parents
 
call girls in Kamla Market (DELHI) 🔝 >༒9953330565🔝 genuine Escort Service 🔝✔️✔️
call girls in Kamla Market (DELHI) 🔝 >༒9953330565🔝 genuine Escort Service 🔝✔️✔️call girls in Kamla Market (DELHI) 🔝 >༒9953330565🔝 genuine Escort Service 🔝✔️✔️
call girls in Kamla Market (DELHI) 🔝 >༒9953330565🔝 genuine Escort Service 🔝✔️✔️
 
Model Call Girl in Tilak Nagar Delhi reach out to us at 🔝9953056974🔝
Model Call Girl in Tilak Nagar Delhi reach out to us at 🔝9953056974🔝Model Call Girl in Tilak Nagar Delhi reach out to us at 🔝9953056974🔝
Model Call Girl in Tilak Nagar Delhi reach out to us at 🔝9953056974🔝
 
Keynote by Prof. Wurzer at Nordex about IP-design
Keynote by Prof. Wurzer at Nordex about IP-designKeynote by Prof. Wurzer at Nordex about IP-design
Keynote by Prof. Wurzer at Nordex about IP-design
 
Barangay Council for the Protection of Children (BCPC) Orientation.pptx
Barangay Council for the Protection of Children (BCPC) Orientation.pptxBarangay Council for the Protection of Children (BCPC) Orientation.pptx
Barangay Council for the Protection of Children (BCPC) Orientation.pptx
 

156 515

  • 1.       Check Point 156-515 Check Point Certified Security Expert Plus NGX 70 Q&A Version: C9.0                                                                                       www.CertifyMe.com   
  • 2.       CertifyMe - King of Computer Certification Important Information, Please Read Carefully Other CertifyMe products A) Offline Testing engine Use the offline Testing engine product to practice the questions in an exam environment. B) Study Guide (not available for all exams) Build a foundation of knowledge which will be useful also after passing the exam. Latest Version We are constantly reviewing our products. New material is added and old material is updated. Free updates are available for 90 days after the purchase. You should check your member zone at CertifyMe and update 3-4 days before the scheduled exam date. Here is the procedure to get the latest version: 1.Go towww.certifyme.com 2.Click on Member zone/Log in (right side) 3. Then click My Account 4.The latest versions of all purchased products are downloadable from here. Just click the links. For most updates,it is enough just to print the new questions at the end of the new version, not the whole document. Feedback If you spot a possible improvement then please let us know. We always interested in improving product quality. Feedback should be send to feedback@certifyme.com. You should include the following: Exam number, version, page number, question number, and your login ID. Our experts will answer your mail promptly. Copyright Each PDF file contains a unique serial number associated with your particular name and contact information for security purposes. So if we find out that a particular PDF file is being distributed by you, CertifyMe reserves the right to take legal action against you according to the International Copyright Laws. Explanations This product does not include explanations at the moment. If you are interested in providing explanations for this exam, please contact feedback@certifyme.com.                                                                                       www.CertifyMe.com   
  • 3.       1. Which files should be acquired from a Windows 2003 Server system crash with a Dr. Watson error? A. drwtsn32.log B. vmcore.log C. core.log D. memory.log E. info.log Answer: A 2. VPN debugging information is written to which of the following files? A. FWDIR/log/ahttpd.elg B. FWDIR/log/fw.elg C. $FWDIR/log/ike.elg D. FWDIR/log/authd.elg E. FWDIR/log/vpn.elg Answer: C 3. fw monitor packets are collected from the kernel in a buffer. What happens if the buffer becomes full? A. The information in the buffer is saved and packet capture continues, with new data stored in the buffer. B. Older packet information is dropped as new packet information is added. C. Packet capture stops. D. All packets in it are deleted, and the buffer begins filling from the beginning. Answer: D 4. Which file provides the data for the host_table output, and is responsible for keeping a record of all internal IPs passing through the internal interfaces of a restricted hosts licensed Security Gateway? A. hosts.h B. external.if C. hosts D. fwd.h E. fwconn.h Answer: D 5. You modified the *def file on your Security Gateway, but the changes were not applied. Why? A. There is more than one *.def file on the Gateway. B. You did not have the proper authority. C. *.def files must be modified on the SmartCenter Server. D. The *.def file on the Gateway is read-only. Answer: C 6. Assume you have a rule allowing HTTP traffic, on port 80, to a specific Web server in a Demilitarized                                                                                       www.CertifyMe.com   
  • 4.       Zone (DMZ). If an external host port scans the Web server's IP address, what information will be revealed? A. Nothing; the NGX Security Server automatically block all port scans. B. All ports are open on the Security Server. C. All ports are open on the Web server. D. The Web server's file structure is revealed. E. Port 80 is open on the Web server. Answer: E 7. Which of the following types of information should an Administrator use tcpdump to view? A. DECnet traffic analysis B. VLAN trunking analysis C. NAT traffic analysis D. Packet-header analysis E. AppleTalk traffic analysis Answer: D 8. Which statement is true for route based VPNs? A. IP Pool NAT must be configured on each gateway B. Route-based VPNs replace domain-based VPNs C. Route-based VPNs are a form of partial overlap VPN Domain D. Packets are encrypted or decrypted automatically E. Dynamic-routing protocols are not required Answer: E 9. The list below provides all the actions Check Point recommends to troubleshoot a problem with an NGX product. A.List Possible Causes B.Identify the Problem C.Collect Related Information D.Consult Various Reference Sources E.Test Causes Individually and Logically Select the answer that shows the order of the recommended actions that make up Check Point's troubleshooting guidelines? A. B, C, A, E, D B. A, E, B, D, C C. A, B, C, D, E D. B, A, D, E, C E. D, B, A, C, E                                                                                       www.CertifyMe.com   
  • 5.       Answer: A 10. NGX Wire Mode allows: A. Peer gateways to establish a VPN connection automatically from predefined preshared secrets. B. Administrators to verify that each VPN-1 SecureClient is properly configured, before allowing it access to the protected domain. C. Peer gateways to fail over existing VPN traffic, by avoiding Stateful Inspection. D. Administrators to monitor VPN traffic for troubleshooting purposes. E. Administrators to limit the number of simultaneous VPN connections, to reduce the traffic load passing through a Security Gateway. Answer: C 11. Which of the following commands identifies whether or not a Security Policy is installed or the Security Gateway is operating with the Initial Policy? A. fw monitor B. cp policy C. cp stat D. fw policy E. fw stat Answer: E 12. A SecuRemote/SecureClient tunnel test uses which port? A. UDP 18233 B. UDP 2746 C. UDP 18234 D. TCP 18231 E. UDP 18321 Answer: C 13. Which of the following vpn debug options purges ike.elg and vpnd.elg, and creates a time stamp before starting ike debug and vpn debug at the same time? A. ike on B. timeon C. trunc D. ikefail E. mon Answer: C 14. Gus is troubleshooting a problem with SMTP. He has enabled debugging on his Security Gateway and needs to copy the *.elg files into an archive to send to Check Point Support. Which of the following files                                                                                       www.CertifyMe.com   
  • 6.       does Gus NOT need to send? A. fwd.elg B. mdq.elg C. diffserv.elg D. asmtpd.elg Answer: C 15. How can you view cpinfo on a SecurePlatform Pro machine? A. snoop -i B. infotab C. tcpdump D. Text editor, such as vi E. infoview Answer: D 16. When VPN-1 NGX starts after reboot, with no installed Security Policy, which of these occurs? A. All traffic except HTTP connections is blocked. B. All traffic except SmartDefense Console connections is blocked. C. All traffic is blocked. D. All traffic except SmartConsole/SmartCenter Server connections is blocked. E. All traffic is allowed. Answer: D 17. Which of the following commands would you run to debug a VPN connection? A. debug vpn ike B. debug vpn ikeon C. vpn debug ike D. debug vpn ike on E. vpn debug ikeon Answer: E 18. Which one of these is a temporary pointer log file? A. $FWDIR/log/xx.logptr B. $FWDIR/log/xx.log C. $FWDIR/log/xx.logaccount_ptr D. $FWDIR/log/xx.logLuuidDB Answer: D 19. When collecting information relating to the perceived problem, what is the most important question to ask?                                                                                       www.CertifyMe.com   
  • 7.       A. Is this problem repeatable? B. Is this problem software or hardware related? C. Under what circumstances does this problem occur? D. What action or state am I trying to achieve? E. Does the problem appear random or can you establish a pattern? Answer: C 20. The virtual machine inspects each packet at the following points: -Before the virtual machine, in the inbound direction (i or PREIN) -After the virtual machine, in the inbound direction (I or POSTIN) -Before the virtual machine, in the outbound direction (o or PREOUT) -After the virtual machine, in the outbound direction (O or POSTOUT) If Ethereal displays a packet with i, I, o, and O entries, what does that likely indicate? A. The packet was rejected by the Rule Base. B. The packet was destined for the Gateway. C. Nothing unusual; the o and O entries only appear if there is a kernel-level error. D. The packet was rerouted by the Gateway's OS. E. The packet arrived at the kernel and left the Security Gateway successfully. Answer: E 21. To stop the sr_service debug process, you must first stop VPN-1 SecureClient, delete which of the following files, and restart SecureClient? A. sr_auth.all B. sr_topo.all C. sr_tde.all D. sr_service.all E. sr_users.all Answer: C 22. Which of the following fw monitor commands only captures traffic between IP addresses 192.168.11.1 and 10.10.10.1? A. fw monitor -e "accept src=192.168.11.1 or dst=192.168.11.1 or src=10.10.10.1 or dst=10.10.10.1;" B. fw monitor -e "accept src=192.168.11.1 or dst=192.168.11.1; src=10.10.10.1 or dst=10.10.10.1;" C. fw monitor -e "accept src=192.168.111 and dst=192.168.11.1; src=10.10.10.1 and dst=10.10.10.1;" D. fw monitor -e "accept src=192.168.11.1 or dst=192.168.11.1; and src=10.10.10.1 or dst=10.10.10.1;" E. fw monitor -e "accept (src=192.168.11.1 and dst=10.10.10.1) or (src=10.10.10.1 and dst=192.168.11.1);" Answer: E 23. To start both vpnd.elg and ike.elg, which single vpn debug command would you use?                                                                                       www.CertifyMe.com   
  • 8.       A. vpn debug vpnd.elg +ike B. vpn debug ikeinit C. vpn debug ikeon D. vpn debug trunc E. vpn tu Answer: D 24. Which of the following explanations best describes the audit log file xx.adtloginitial_ptr? A. Pointers to the beginning of each accounting record B. Additional temporary pointer file C. Pointers to the beginning of each log chain D. Audit log records E. Pointers to the beginning of each log record Answer: C 25. If you run only fw monitor without any parameters, where does the output display? A. In /tmp/log/monitor.out B. In $FWDIR/bin C. In /var/log/monitor.out D. On the console E. In /var/adm/monitor.out Answer: D 26. Which of the following commands can you run to view packet flow of a VPN-1 SecuRemote/SecureClient connection? A. cpd monitor B. vpn monitor C. fw monitor D. srfw monitor E. sc monitor Answer: D 27. Steve tries to configure Directional VPN Rule Match in the Rule Base. However, the Match column does not have the option to see the Directional Match. Steve sees the following screen. What is the problem?                                                                                       www.CertifyMe.com   
  • 9.       A. Steve must enable directional_match(true) in the objects_5_0.C file on SmartCenter Server. B. Steve must enable Advanced Routing on each Security Gateway. C. Steve must enable VPN Directional Match on the gateway object's VPN tab. D. Steve must enable VPN Directional Match on the VPN advanced screen, in Global properties. E. Steve must enable a dynamic-routing protocol, such as OSPF, on the Gateways. Answer: D 28. The output of tcpdump is a binary file. Which of the following commands will write the tcpdump file into an ASCII file through std_out? A. tcpdump <file_name> &> <file_name> B. tcpdump <file_name> ?> <file_name> C. tcpdump <file_name> %> <file_name> D. tcpdump <file_name> > <file_name> E. tcpdump <file_name> *> <file_name> Answer: A 29. Setting snaplen to 0 will capture how much of the packet data? A. None of the packet. B. The whole packet. C. The first octet of the packet header. D. The first protocol level of the packet. Answer: B                                                                                       www.CertifyMe.com   
  • 10.       30. Pulling Certificates from an ICA uses which port? A. Port 18211 B. Port 18212 C. Port 18209 D. Port 18210 Answer: D 31. How do you run fw ctl debug, to see all information about a cluster? A. fw ctl debug cluster all fw ctl debug > output fw ctl debug uf 1024 B. fw ctl pstat fw ctl debug all fw ctl debug > out C. fw ctl debug uf 1024 fw ctl debug cluster all fw ctl kdebug > output D. fw ctl debug on fw ctl debug cluster all fw ctl kdebug > output E. fw ctl debug on fw ctl debug uf 1024 fw ctl debug cluster all fw ctl kdebug > output Answer: C 32. What does it indicate when a cluster state is "Active attention"? A. The cluster member is booting: ClusterXL is running, but VPN-1/ NGX is not yet ready. B. Both cluster members are up and ready. C. Cluster members are running different versions: The newer version member is in the ready state, while the older version member is in the active state. D. Traffic is being passed, but a problem has been detected: There are no other active members in the cluster. Answer: D 33. Which of these issues would you use fw debug fwm as the primary debugging command for troubleshooting? A. Policy save issues                                                                                       www.CertifyMe.com   
  • 11. Pass Your Exam at First Attempt with 100% Pass Guarantee Buy Full Version of 156-515 Exam at http://www.certifyme.com/156-515.htm