What happen when IPS profile is set in Detect Only Mode for troubleshooting?
Answer(s): C
It is recommended to enable Detect-Only for Troubleshooting on the profile during the initial installation of IPS. This option overrides any protections that are set to Prevent so that they will not block any traffic.During this time you can analyze the alerts that IPS generates to see how IPS will handle network traffic, while avoiding any impact on the flow of traffic.
What is true about VRRP implementations?
The Security Gateway is installed on GAIA R81. The default port for the Web User Interface is ______ .
Answer(s): D
Fill in the blank: The R81 feature _____ permits blocking specific IP addresses for a specified time period.
Suspicious Activity Rules SolutionSuspicious Activity Rules is a utility integrated into SmartView Monitor that is used to modify access privileges upon detection of any suspicious network activity (for example, several attempts to gain unauthorized access).The detection of suspicious activity is based on the creation of Suspicious Activity rules. Suspicious Activity rules are Firewall rules that enable the system administrator to instantly block suspicious connections that are not restricted by the currently enforced security policy. These rules, once set (usually with an expiration date), can be applied immediately without the need to perform an Install Policy operation.
Post your Comments and Discuss Checkpoint 156-315.81 exam with other Community members:
Fon commented on January 05, 2024 Q40 is wrong, correct reponse is 'Accept' template is enabled by default in R81.20 AUSTRALIA upvote
Gavin commented on August 24, 2023 Question76 is wrong, Manual NAT ALWAYS comes first Anonymous upvote
stephane T commented on July 29, 2023 very usefull CAMEROON upvote