Cisco®
CompTIA
Checkpoint
ISC
EC-Council
EXIN
Fortinet
ITIL®
Juniper
Microsoft
VMware
Avaya
SAP
Google
Salesforce
Amazon
Palo Alto Networks
ISC2
Splunk®
ServiceNow®
All Vendors
  2. Home
  3. Exams
  4. Checkpoint
  5. 156-915.80

156-915.80: Check Point Certified Security Expert Update - R80.10
Free Practice Exam Questions (page: 14)
Updated On: 2-Jan-2026

Page 14 of 127
PDF with 503 Questions

You are investigating issues with two gateway cluster members that are not able to establish the first initial cluster synchronization.
What service is used by the FWD daemon to do a Full Synchronization?

  1. TCP port 443
  2. TCP port 257
  3. TCP port 256
  4. UDP port 8116

Answer(s): C

Explanation:

Synchronization works in two modes:
Full sync transfers all Security Gateway kernel table information from one cluster member to another. It is handled by the fwd daemon using an encrypted TCP connection. Delta sync transfers changes in the kernel tables between cluster members. Delta sync is handled by the Security Gateway kernel using UDP multicast or broadcast on port 8116. Full sync is used for initial transfers of state information, for many thousands of connections. If a cluster member is brought up after being down, it will perform full sync. After all members are synchronized, only updates are transferred via delta sync. Delta sync is quicker than full sync.



Which command shows the current connections distributed by CoreXL FW instances?

  1. fw ctl multik stat
  2. fw ctl affinity ­l
  3. fw ctl instances ­v
  4. fw ctl iflist

Answer(s): A

Explanation:

The fw ctl multik stat and fw6ctl multik stat (multi-kernel statistics) commands show information for each kernel instance. The state and processing core number of each instance is displayed, along with:
The number of connections currently being handled.
The peak number of concurrent connections the instance has handled since its inception.



What is the most ideal Synchronization Status for Security Management Server High Availability deployment?

  1. Lagging
  2. Synchronized
  3. Never been synchronized
  4. Collision

Answer(s): B

Explanation:

The possible synchronization statuses are:
Never been synchronized - immediately after the Secondary Security Management server has been installed, it has not yet undergone the first manual synchronization that brings it up to date with the

Primary Security Management server.
Synchronized - the peer is properly synchronized and has the same database information and installed Security Policy.
Lagging - the peer SMS has not been synchronized properly. For instance, on account of the fact that the Active SMS has undergone changes since the previous synchronization (objects have been edited, or the Security Policy has been newly installed), the information on the Standby SMS is lagging.
Advanced - the peer SMS is more up-to-date.
For instance, in the above figure, if a system administrators logs into Security Management server B before it has been synchronized with the Security Management server A, the status of the Security Management server A is Advanced, since it contains more up-to-date information which the former does not have.
In this case, manual synchronization must be initiated by the system administrator by changing the Active SMS to a Standby SMS. Perform a synch me operation from the more advanced server to the Standby SMS. Change the Standby SMS to the Active SMS. Collision - the Active SMS and its peer have different installed policies and databases. The administrator must perform manual synchronization and decide which of the SMSs to overwrite.



What GUI client would you use to view an IPS packet capture?

  1. SmartView Monitor
  2. SmartView Tracker
  3. Smart Update
  4. Smart Reporter

Answer(s): B



Viewing page 14 of 127
Viewing questions 53 - 56 out of 503 questions



Post your Comments and Discuss Checkpoint 156-915.80 exam prep with other Community members:

156-915.80 Exam Discussions & Posts