Download Free Check Point 156-815.70 PDF and VCE Updated Today
Vendor: Check Point Exam Code: 156-815.70 Exam Name: Check Point Certified Managed Security Expert R70 QUESTION 1 Which operating system listed supports running a Multi-Domain Management with Provider-1 MDS, but has a limitation in the number of virtual IP addresses which can be assigned to a given interface? A. Red Hat Enterprise Linux B. Windows 2003 Server C. SecurePlatform D. Solaris Answer: D QUESTION 2 Which of the following systems would meet the MINIMUM requirements for an MDS? A. SecurePlatform, 10 GB hard drive B. SecurePlatform, 2-GB hard drive, 8 MB memory C. Solaris 9, 4-GB hard drive, 1 GB memory D. Linux RHEL 5, 2.4 kernel, 4-GB hard drive, 4-GB memory Answer: A QUESTION 3 What is the partial path for the CMA's bin directory, where $FWDIR is the symbolic link? A. /opt/CPshared-R70/bin B. /opt/CPmds-R70/bin C. /CPsuite-R70/fw1/bin D. $FWDIR/bin on the MDS level Answer: C QUESTION 4 What file contains the Global Policy Rule Base? A. rulebases_5_0.fws B. rulebases_5_0.C C. rulebases_5_0.fwz D. objects_5_0.C Answer: A QUESTION 5 Which of the following statements is TRUE about Multi-Domain Management with Provider-1? A. Provider-1 encrypts all traffic among modules - so no firewall is necessary to protect the Provider-1 system. B. The MDS Manager has a built-in firewall for the Provider-1 system, protecting the MDS Containers. C. The added security of a firewall to protect the Provider-1 system is difficult to implement, and is not recommended. D. A separately managed Security Gateway is recommended to protect the Provider-1 environment. Answer: D QUESTION 6 On which SecurePlatform kernel version is Multi-Domain Management with Provider-1 R70 built? A. 2.4.18 B. 2.6.18-92 C. 2.4.21-21 D. RHEL 3 Answer: B QUESTION 7 What is the name for the interface connecting CMA Virtual IPs? A. Leading VIP Interface B. VIP Lounge Interface C. Main External Interface Answer: A QUESTION 8 Communication between the MDG and the MDS is secured in what way? A. IKE encryption using shared secret B. Configurable third-party authentication mechanism C. Username and Password authentication D. SSL initiated using SIC certificate exchange Answer: D QUESTION 9 All of the following can be configured on a Multi-Domain Management with Provider-1 MDS, EXCEPT: A. Analyze logs B. Firewall Module C. Firewall Manager D. Customer Logging Module Answer: B QUESTION 10 When does a SIC certificate expire for CMA/MDS? A. After 3 years B. After 5 years C. The interval is configurable. D. After 1 year Answer: B QUESTION 11 When a NOC firewall separates the Multi-Domain Management with Provider-1 MDS machine and the MDG (as shown below), what must be done to allow the MDG to connect to the MDS? Modify the NOC Security Gateway Rule Base to allow: A. RPC traffic for the MDG. B. CPD and CPD_amon traffic to pass between the MDG and the MDS. C. UDP traffic for the MDG. D. CPMI traffic to pass between the MDG and the MDS. Answer: D QUESTION 12 Which of the following ports is used by CPMI to communicate between Multi-Domain Management with Provider-1 modules? A. TCP port 260 B. TCP port 264 C. TCP port 18191 D. TCP port 18190 Answer: D QUESTION 13 When debugging the fwm process at the MDS level, what file is created? A. $FWDIR/log/fwm.elg and fwm.log B. /var/opt/CPsuite-R70/fw1/log/mds.elg and /var/opt/CPmds-R70/log/mds.log C. /var/opt/CPsuite-R70/fw1/log/fwm.elg and fwm.log D. $CPDIR/log/debug.elg Answer: B QUESTION 14 When debugging the fwm process at the MDS level, what file is created? A. fwm.log B. mds.error C. mds.log D. fwm.elg Answer: C QUESTION 15 What information can NOT be obtained from the mdsstat output? A. Hostname of the MDS B. Up / down status C. IP address of the CMA D. PID number FWD Answer: A If you want to pass Check Point 156-815.70 successfully, donot missing to read latest lead2pass Check Point 156-815.70 practice tests. If you can master all lead2pass questions you will able to pass 100% guaranteed. http://www.lead2pass.com/156-727-77.html 1
|