Which FW-1 kernel flags should be used to properly debug and troubleshoot NAT issues?
By default, the size of the fwx_alloc table is:
You are attempting to establish an FTP session between your computer and a remote server, but it is not being completed successfully. You think the issue may be due to IPS. Viewing SmartView Tracker shows no drops. How would you confirm if the traffic is actually being dropped by the gateway?
Which flag in the fw monitor command is used to print the position of the kernel chain?
Which is NOT a valid upgrade method in an R77 GAiA ClusterXL deployment?
You run the commands:
fw ctl debug 0
fw ctl debug -buf 32000
Which of the following commands would be best to troubleshoot a clustering issue?
When viewing connections using the command fw tab -t connections, all entries are displayed with a 6-tuple key, the elements of the 6-tuple include the following EXCEPT:
Which command can be used to see all active modules on the Security Gateway:
A system administrator wants to convert an IPv6 gateway from a standard gateway into a gateway running VSX mode. What does he need to consider?
Which of these commands can be used to display the IPv6 status?
Which of the following statements about Full HA support with IPv6 is NOT true?
Does R77 SmartDashboard support IPv6?
What do the ‘F’ flags mean in the output of fwaccel conns?
While troubleshooting high CPU usage on cores 3 and 4 on a cluster, you notice the following output of fwaccel stats -s:
What could be a possible cause of the high CPU usage?
Certain rules will disable connection rate acceleration (templates) in the Rule Base. What command should be used to determine on what rule templates are disabled?
Which of the following statements are TRUE about SecureXL?
I. SecureXL is able to accelerate all connections through the firewall.
II. Medium path acceleration will still cause some CPU utilization of CoreXL cores.
III. F2F connections represent “forwarded to firewall” connections that are not accelerated and fully processed through the firewall kernel.
IV. Packets going through SecureXL must be inspected by the firewall kernel before being accelerated.
Which of the following IPS Layers is the "brain" of the IPS? That is, what coordinates between different components, decides which protections should run on a certain packet, decides the final action to be performed on the packet and issues an event log?
You have strict IPS corporate guidelines. This is having a performance impact on the firewall. What steps could you take to minimize this impact without compromising the corporate policy?
You have spent time configuring the IPS profile on your primary gateway firewall. You want to ensure that this profile can be applied to all gateway firewalls in your environment. How can you share this information between firewalls?
When using Geo Protections, you find there are logs for a country that you believe is incorrect. What file do you review to verify what country Geo Protections should identify the traffic as?
Why would you choose to combine dynamic routing protocols and VPNs?
Where can you configure Wire mode?
When configuring a Numbered VPN-Tunnel, what parameters are necessary?
Where would an administrator set an email alert for a specific permanent VPN tunnel?
Under which scenario would you most likely consider the use of Multi-Queue?
You have a user-defined SMTP trap configured to send an alert to your mail server, and you also have SmartView Monitor configured to trigger the alert whenever policy is pushed to your gateway. However, you are not getting any mails even when you test for pushing policy. What process should you troubleshoot on the Management Server?
what command other than fw ctl pstat, will display your peak concurrent connections?
You are finding that some users are complaining about slow connection speed. You would like to review a summary of your connections, including which connections are accelerated and those that are not. What command could you use?
Misha is working on a stand-by firewall and deletes the connections table in error. He finds that now the table is out of sync with the Active member. to get them completely synced again, Mish should run the command pair ____________ and __________ .
How does the Check Point Security Administrator enable NAT Templates?
In a ClusterXL cluster with delayed synchronization, which of the following is not true?
What is one way to check cluster status on two gateways running in HA mode?
When troubleshooting a performance problem on multicore firewall that is using CoreXL, what command checks the number of connections each core is processing?
You are at a customer site, and when you run cphaprob stat you are not seeing a normal ClusterXL Health. What command could you run verify the number of cores are not matched on both cluster members?
What command verifies which core each gateway interface and firewall instance is currently running on?
Your customer has a well optimized Rule Base with most traffic accelerated by SecureXL. They are still seeing slow performance. They are using an 8 core machine. They see the following output from fw ctl affinity -l. What could be done to improve performance with this deployment?
The command that lists the firewall kernel modules on a Security Gateway is:
What does the IP Options Strip represent under the fw chain output?
The command fw monitor -p all displays what type of information?
Compare these two images to establish which blade/feature was disabled on the firewall.
What is the log file that shows the keep alive packets during the debug process?
Check Point Best Practices suggest that when you finish a kernel debug, you should run the command _____________________ .
Which command will you run to list established VPN tunnels?
You are troubleshooting your VPN and are reviewing the output of your command fw monitor, shown below. What can you determine from the following output?
Copyright © 2014-2024 CertsTopics. All Rights Reserved
