Cisco
CompTIA
ISC
EC-Council
EXIN
Fortinet
ITIL
Juniper
Microsoft
VMware
Avaya
SAP
Google
NVIDIA
Salesforce
Amazon
Palo Alto Networks
ISC2
Splunk
ServiceNow
All Vendors
  2. Home
  3. Exams
  4. Checkpoint
  5. 156-215.81

Checkpoint 156-215.81 Exam
Check Point Certified Security Administrator R81 (Page 3 )

Updated On: 7-Feb-2026
Page 3 of 84
PDF with 411 Questions

How Capsule Connect and Capsule Workspace differ?

  1. Capsule Connect provides a Layer3 VPN. Capsule Workspace provides a Desktop with usable applications
  2. Capsule Workspace can provide access to any application
  3. Capsule Connect provides Business data isolation
  4. Capsule Connect does not require an installed application at client

Answer(s): A

Explanation:

Capsule Connect provides a Layer 3 VPN that allows users to access corporate resources securely from their mobile devices2. Capsule Workspace provides a secure container on the mobile device that isolates business data and applications from personal data and applications3. Capsule Workspace also provides a desktop with usable applications such as email, calendar, contacts, documents, and web applications3.


Reference:

Check Point Capsule Connect, Check Point Capsule Workspace



Which of the following is a new R80.10 Gateway feature that had not been available in R77.X and older?

  1. The rule base can be built of layers, each containing a set of the security rules. Layers are inspected in the order in which they are defined, allowing control over the rule base flow and which security functionalities take precedence.
  2. Limits the upload and download throughput for streaming media in the company to 1 Gbps.
  3. Time object to a rule to make the rule active only during specified times.
  4. Sub Policies are sets of rules that can be created and attached to specific rules. If the rule is matched, inspection will continue in the sub policy attached to it rather than in the next rule.

Answer(s): D

Explanation:

Sub Policies are a new feature in R80.10 Gateway that allow creating and attaching sets of rules to specific rules in the main policy4. Sub Policies are useful for delegating permissions, managing large rule bases, and applying different inspection profiles4. The other options are not new features in R80.10 Gateway.


Reference:

Check Point R80.10 Security Management Administration Guide



What are the three components for Check Point Capsule?

  1. Capsule Docs, Capsule Cloud, Capsule Connect
  2. Capsule Workspace, Capsule Cloud, Capsule Connect
  3. Capsule Workspace, Capsule Docs, Capsule Connect
  4. Capsule Workspace, Capsule Docs, Capsule Cloud

Answer(s): D

Explanation:

The three components for Check Point Capsule are Capsule Workspace, Capsule Docs, and Capsule Cloud123. Capsule Workspace provides a secure container on the mobile device that isolates business data and applications from personal data and applications2. Capsule Docs protects business documents everywhere they go with encryption and access control1. Capsule Cloud provides cloud- based security services to protect mobile users from threats3.


Reference:

Check Point Capsule, Check Point Capsule Workspace, Mobile Secure Workspace with Capsule



Full synchronization between cluster members is handled by Firewall Kernel.
Which port is used for this?

  1. UDP port 265
  2. TCP port 265
  3. UDP port 256
  4. TCP port 256

Answer(s): B

Explanation:

The port used for full synchronization between cluster members is TCP port 2654. This port is used by the Firewall Kernel to send and receive synchronization data, such as connection tables, NAT tables, and VPN keys4. UDP port 8116 is used by the Cluster Control Protocol (CCP) for internal communications between cluster members4.


Reference:

How does the Cluster Control Protocol function in working and failure scenarios for gateway clusters?



What is true about the IPS-Blade?

  1. in R80, IPS is managed by the Threat Prevention Policy
  2. in R80, in the IPS Layer, the only three possible actions are Basic, Optimized and Strict
  3. in R80, IPS Exceptions cannot be attached to "all rules"
  4. in R80, the GeoPolicy Exceptions and the Threat Prevention Exceptions are the same

Answer(s): A

Explanation:

In R80, IPS is managed by the Threat Prevention Policy567. The Threat Prevention Policy defines how to protect the network from malicious traffic using IPS, Anti-Bot, Anti-Virus, and Threat Emulation software blades5. The IPS layer in the Threat Prevention Policy allows configuring IPS protections and actions for different network segments5. The other options are not true about the IPS-Blade.


Reference:

Check Point IPS Datasheet, Check Point IPS Software Blade, Quantum Intrusion

Prevention System (IPS)






Post your Comments and Discuss Checkpoint 156-215.81 exam prep with other Community members:

Join the 156-215.81 Discussion