Checkpoint 156-315.81 Exam With Confidence Using Practice Dumps

Access roles are objects that define a set of users, machines, or networks that can access a specific network resource. You can create access roles based on any combination of the following criteria:

• Users and user groups: You can use users and user groups from various sources, such as LDAP, RADIUS, local database, etc.
• Computers or computer groups: You can use computers or computer groups that are identified by their IP address, MAC address, or hostname.
• Networks: You can use networks that are defined by their IP address range, subnet mask, or gateway.

You can use access roles in the Source or Destination column of an Access Control rule to allow or deny network access based on the identity of the users, machines, or networks.

The references are:

• Check Point Certified Security Expert R81.20 (CCSE) Core Training, slide 11
• Check Point R81 Quantum Security Gateway Guide, page 139
• Check Point R81 Identity Awareness Administration Guide, page 9

The correct command to observe the Sync traffic in a VRRP environment is fw monitor –e “accept dst=224.0.0.18;”. This command captures the packets that have the destination IP address of 224.0.0.18, which is the multicast address used by VRRP for synchronization. The other commands are either not valid or not specific to VRRP Sync traffic. References: [Check Point R81 ClusterXL Administration Guide], Check Point R81 Performance Tuning Administration Guide