★ Pass on Your First TRY ★ 100% Money Back Guarantee ★ Realistic Practice Exam Questions

Free Instant Download NEW 156-315.77 Exam Dumps (PDF & VCE):
Available on: https://www.certleader.com/156-315.77-dumps.html


Proper study guides for Improved Check Point Check Point Security Expert R77 certified begins with Check Point 156-315.77 preparation products which designed to deliver the Approved 156-315.77 questions by making you pass the 156-315.77 test at your first time. Try the free 156-315.77 demo right now.

2021 Jan 156-315.77 exam answers

Q401. - (Topic 3) 

There are times when you want to use Link Selection to manage high-traffic VPN connections. With Link Selection you can: 

A. Probe links for availability. 

B. Use links based on Day/Time. 

C. Assign links to specific VPN communities. 

D. Use links based on authentication method. 

Answer:


Q402. - (Topic 6) 

Which of the following is NOT a supported browser for Management Portal? 

A. Internet Explorer 

B. Safari 

C. Firefox 

D. Mozilla 

Answer:


Q403. - (Topic 6) 

Which of the following is a supported deployment for Connectra? 

A. IPSO 4.9 build 88 

B. VMWare ESX 

C. Solaris 10 

D. Windows server 2007 

Answer:


Q404. - (Topic 7) 

MultiCorp has bought company OmniCorp and now has two active AD domains. How would you deploy Identity Awareness in this environment? 

A. You must run an ADquery for every domain. 

B. Identity Awareness can only manage one AD domain. 

C. Only one ADquery is necessary to ask for all domains. 

D. Only Captive Portal can be used. 

Answer:


Q405. - (Topic 1) 

Steve is troubleshooting a connection problem with an internal application. If he knows the source IP address is 192.168.4.125, how could he filter this traffic? 

A. Run fw monitor -e "accept dsrc=192.168.4.125;" 

B. Run fw monitor -e "accept dst=192.168.4.125;" 

C. Run fw monitor -e "accept ip=192.168.4.125;" 

D. Run fw monitor -e "accept src=192.168.4.125;" 

Answer:


Up to the immediate present 156-315.77 exam question:

Q406. - (Topic 3) 

A VPN Tunnel Interface (VTI) is defined onSecure PlatformPro as: vpn shell interface add numbered 10.10.0.1 10.10.0.2 madrid.cp What do you know about this VTI? 

A. 10.10.0.1 is the local Gateway's internal interface, and 10.10.0.2 is the internal interface of the remote Gateway. 

B. The peer Security Gateway's name is madrid.cp. 

C. The VTI name is madrid.cp. 

D. The local Gateway's object name is madrid.cp. 

Answer:


Q407. - (Topic 7) 

When deploying a dedicated DLP Gateway behind a perimeter firewall on an interface leading to the internal network (there is only one internal network): 

A. The DLP Gateway can inspect SMTP traffic if a MS Exchange server is located on the internal network, and it either sends e-mails directly to the Internet using SMTP or sends e-mails to the Internet in SMTP via a mail relay that is located on the perimeter's firewall DMZ network. 

B. The DLP Gateway can inspect internal e-mails (e-mails between two users on the internal network) if the organization's internal mail server is located in the internal network and users are configured to send e-mails to this mail server using SMTP. 

C. User's HTTPS and FTP traffic can be inspected by the R71 DLP Gateway. 

D. The DLP Gateway can inspect e-mails (e-mails between two users on an internal or external network) if the organization's internal mail server is located on another network (not the internal network; for instance the DMZ or a different internal network) and users are configured to send e-mails to this mail server using SMTP. 

Answer:


Q408. - (Topic 3) 

What access level cannot be assigned to an Administrator inSmart Event? 

A. No Access 

B. Write only 

C. Read only 

D. Events Database 

Answer:


Q409. - (Topic 4) 

Which of the following actions is most likely to improve the performance of Check Point QoS? 

A. Put the most frequently used rules at the bottom of the QoS Rule Base. 

B. Define Check Point QoS only on the external interfaces of the QoS Module. 

C. Turn per rule limits into per connection limits 

D. Turn per rule guarantees into per connection guarantees. 

Answer:


Q410. - (Topic 5) 

Which OPSEC server is used to prevent users from accessing certain Web sites? 

A. LEA 

B. URI 

C. UFP 

D. AMON 

E. CVP 

Answer: