Free 156-115.80 Exam Braindumps (page: 7)

Page 6 of 40

Which is the correct “fw monitor” syntax for creating a capture file for loading it into WireShark?

  1. fw monitor –e “accept <FILTER EXPRESSION>; “>> Output.cap
  2. This cannot be accomplished as it is not supported with R80.10
  3. fw monitor –e “accept <FILTER EXPRESSION>;” –file Output.cap
  4. fw monitor –e “accept <FILTER EXPRESSION>;” –o Output.cap

Answer(s): D



How many layers are incorporated in IPS detection and what are they called?

  1. 4 layers – Passive Streaming Library (PSL), Protocol Parsers, Context Management, Protections
  2. 3 layers – Active Streaming Library (ASL), CMI, Protections
  3. 4 layers – Active Streaming Library (ASL), Protocol Parsers, Context Management, Protections
  4. 3 layers – Protocol Parsers, CMI, Protections

Answer(s): A



What is the command to check the current status of hyper-threading?

  1. fw ctl get int cphwd_hyper_status
  2. fw ctl multik stat
  3. cat/proc/hyperstats
  4. cat/proc/smt_status

Answer(s): D


Reference:

https://supportcenter.checkpoint.com/supportcenter/portal?eventSubmit_doGoviewsolutiondetails=&solutionid=sk93000#To%20check% 20SMT%20current%20status



What occurs when Bypass Under Load activated?

  1. Packets are forwarded to the destination without checking the packets against the firewall rule base
  2. Packets are forwarded to the destination without performing IPS analysis
  3. To still ensure a minimum level of data integrity, the system revert to the use of MD5 instead of SHA-1, since former produces an output smaller than the latter
  4. The amount of the state table entries is decreased according to the LRU (least recently used) algorithm

Answer(s): B


Reference:

https://sc1.checkpoint.com/documents/R76/CP_R76_IPS_AdminGuide/12750.htm






Post your Comments and Discuss Checkpoint 156-115.80 exam with other Community members:

156-115.80 Discussions & Posts