QUESTION: 69 Exam Topic: 1, Exam Pool A

What has to be taken into consideration when configuring Management HA?

The Database revisions will not be synchronized between the management servers
SmartConsole must be closed prior to synchronized changes in the objects database
If you wanted to use Full Connectivity Upgrade, you must change the Implied Rules to allow FW1_cpredundant to pass before the Firewall Control Connections.
For Management Server synchronization, only External Virtual Switches are supported. So, if you wanted to employ Virtual Routers instead, you have to reconsider your design.

Answer(s): A

Explanation:

When configuring Management HA, you have to take into consideration that the Database revisions will not be synchronized between the management servers. Database revisions are snapshots of the database that are created manually or automatically when installing a policy or saving changes. They are stored locally on each management server and are not replicated by Management HA. The other options are either not true or not relevant to Management HA.

Reference:

Check Point R81 Installation and Upgrade Guide

Reveal Solution Next Question

QUESTION: 70 Exam Topic: 1, Exam Pool A

What is the difference between an event and a log?

Events are generated at gateway according to Event Policy
A log entry becomes an event when it matches any rule defined in Event Policy
Events are collected with SmartWorkflow form Trouble Ticket systems
Log and Events are synonyms

Answer(s): B

Explanation:

The difference between an event and a log is that a log entry becomes an event when it matches any rule defined in Event Policy. A log entry is a record of a network activity that is generated by a Security Gateway or a Management Server. An event is a log entry that meets certain criteria and triggers an action or a notification. The other options are either not true or not accurate definitions of events and logs.

Reference:

Check Point R81 Logging and Monitoring Administration Guide

Reveal Solution Next Question

QUESTION: 71 Exam Topic: 1, Exam Pool A

What are the attributes that SecureXL will check after the connection is allowed by Security Policy?

Source address, Destination address, Source port, Destination port, Protocol
Source MAC address, Destination MAC address, Source port, Destination port, Protocol
Source address, Destination address, Source port, Destination port
Source address, Destination address, Destination port, Protocol

Answer(s): A

Explanation:

The attributes that SecureXL will check after the connection is allowed by Security Policy are Source address, Destination address, Source port, Destination port, Protocol. These are the five tuple parameters that define a connection and are used by SecureXL to accelerate the traffic. The other options are either missing some of the parameters or include irrelevant ones, such as MAC addresses1.

Reference:

Check Point R81 SecureXL Administration Guide

Reveal Solution Next Question

QUESTION: 72 Exam Topic: 1, Exam Pool A

Which statement is NOT TRUE about Delta synchronization?

Using UDP Multicast or Broadcast on port 8161
Using UDP Multicast or Broadcast on port 8116
Quicker than Full sync
Transfers changes in the Kernel tables between cluster members.

Answer(s): A

Explanation:

The statement that is not true about Delta synchronization is Using UDP Multicast or Broadcast on port 8161. Delta synchronization is a mechanism that transfers only the changes in the kernel tables between cluster members, instead of sending the entire tables. It uses UDP Multicast or Broadcast on port 8116, not 81612. The other statements are true about Delta synchronization.

Reference:

Check Point R81 ClusterXL Administration Guide

Reveal Solution Next Question

Free 156-315.81 Exam Braindumps (page: 18)

QUESTION: 69 Exam Topic: 1, Exam Pool A

Explanation:

Reference:

QUESTION: 70 Exam Topic: 1, Exam Pool A

Explanation:

Reference:

QUESTION: 71 Exam Topic: 1, Exam Pool A

Explanation:

Reference:

QUESTION: 72 Exam Topic: 1, Exam Pool A

Explanation:

Reference: