Check-Point-Certified-Security-Expert-(156-315-76).pdf - CheckPoint 156-315-76 Check Point Certified Security Expert

Check-Point-Certified-Security-Expert-(156-315-76).pdf -...

This preview shows page 1 - 4 out of 9 pages.

156-315-76 CheckPoint Check Point Certified Security Expert
Image of page 1
156-315-76 A. QoS Tab B. SmartDefense Tab C. IPSec VPN Tab D. IPS Tab Answer: D QUESTION: 608 Using the output below, what does the red flag indicate for the MS08-067 Protection? A. It indicates this is for follow up B. It indicates this protection is for a new 0-day vulnerability C. It indicates this protection's severity level was modified from the default setting by the administrator D. It indicates this protection is a critical Answer: A QUESTION: 609 In R71, how would you define a rule to block all traffic sent to or from Germany? A. This action is not possible. B. Create a policy rule with destination being a custom dynamic object representing Germany and action block. You must also create a rule in the opposite direction. C. Create a country specific policy within IPS Geo Protections with Germany as the country, block as the action, and from and to country for direction. D. Go to Policy / Global Properties / Geographical Protection Enforcement and add Germany to the blocked countries list. Answer: C QUESTION: 610 In a particular IPS protection in R71 in the Logging Settings, what does the Capture Packets option do? A. This is not a valid selection in R71 B. Attaches a packet capture of the traffic that matches this particular protection to 211 each log that the protection generates.
Image of page 2
156-315-76 C. Starts a packet capture at the time of policy install to capture all of the traffic until this protection is hit. D. Collects all of the logs for packets that have matched this protection within the last 30 days Answer: B QUESTION: 611 When deploying a dedicated DLP Gateway behind a perimeter firewall on an interface leading to the internal network (there is only one internal network): A. The DLP Gateway can inspect SMTP traffic if a MS Exchange server is located on the internal network, and it either sends e-mails directly to the Internet using SMTP or sends e-mails to the Internet in SMTP via a mail relay that is located on the perimeter's firewall DMZ network.
Image of page 3
Image of page 4

You've reached the end of your free preview.

Want to read all 9 pages?

  • Fall '16
  • Mohammad Alizadeh
  • E-mail, DLP

  • Left Quote Icon

    Student Picture

  • Left Quote Icon

    Student Picture

  • Left Quote Icon

    Student Picture