CheckPoint 156-315.80 CCSE Exam Practice Test Instant Access

Question 1

How does the Anti-Virus feature of the Threat Prevention policy block traffic from infected websites?

ABy dropping traffic from websites identified through ThreatCloud Verification and URL Caching

BBy dropping traffic that is not proven to be from clean websites in the URL Filtering blade

CBy allowing traffic from websites that are known to run Antivirus Software on servers regularly

DBy matching logs against ThreatCloud information about the reputation of the website

Answer : D

Question 2

CoreXL is NOT supported when one of the following features is enabled: (Choose three)

ARoute-based VPN

BIPS

CIPv6

DOverlapping NAT

Answer : A, C, D

CoreXL does not support Check Point Suite with these features:

Check Point QoS (Quality of Service)

Route-based VPN

IPv6 on IPSO

Overlapping NAT

Question 3

Which Check Point daemon invokes and monitors critical processes and attempts to restart them if they fail?

Afwm

Bcpd

Ccpwd

Dcpm

Answer : C

Question 4

You have pushed policy to GW-3 and now cannot pass traffic through the gateway. As a last resort, to restore traffic flow, what command would you run to remove the latest policy from GW-3?

Afw unloadlocal

Bfw unloadpolicy

Cfwm unload local

Dfwm unload policy

Answer : A

Question 5

If the Active Security Management Server fails or if it becomes necessary to change the Active to Standby, the following steps must be taken to prevent data loss. Providing the Active Security Management Server is responsive, which if these steps should NOT be performed:

ARename the hostname of the Standby member to match exactly the hostname of the Active member.

BChange the Standby Security Management Server to Active.

CChange the Active Security Management Server to Standby.

DManually synchronize the Active and Standby Security Management Servers.

Answer : A

Question 6

How would you enable VMAC Mode in ClusterXL?

ACluster Object -> Edit -> ClusterXL and VRRP -> Use Virtual MAC

Bfw ctl set int vmac_mode 1

Ccphaconf vmac_mode set 1

DCluster Object -> Edit -> Cluster Members -> Edit -> Use Virtual MAC

Answer : A

Explanation

eventSubmit_doGoviewsolutiondetails=&solutionid=sk50840

Question 7

Installations and upgrades with CPUSE require that the CPUSE agent is up-to-date. Usually the latest build is downloaded automatically. How can you verify the CPUSE agent build?

AIn WebUI Status and Actions page or by running the following command in CLISH: show installer status build

BIn WebUI Status and Actions page or by running the following command in CLISH: show installer status version

CIn the Management Server or Gateway object in SmartConsole or by running the following command in CLISH: show installer status build

DIn the Management Server or Gateway object in SmartConsole or by running the following command in CLISH: show installer agent

Answer : A

CheckPoint 156-315.80 Check Point Certified Security Expert - R80 CCSE Exam Practice Test