Identify the API that is not supported by Check Point currently.
C
Explanation:
Check Point currently supports four types of APIs: R81 Management API, Identity Awareness Web
Services API, OPSEC SDK, and Gaia REST API. The Open REST API is not a valid
option. Reference:
Check Point APIs
SandBlast Mobile identifies threats in mobile devices by using on-device, network, and cloud-based
algorithms and has four dedicated components that constantly work together to protect mobile
devices and their dat
a. Which component is NOT part of the SandBlast Mobile solution?
C
Explanation:
SandBlast Mobile has four components: Management Dashboard, Gateway, Behavior Risk Engine,
and On-Device Network Protection. Personal User Storage is not part of the SandBlast Mobile
solution. Reference:
SandBlast Mobile Architecture
What are the different command sources that allow you to communicate with the API server?
B
Explanation:
You can communicate with the API server using three command sources: SmartConsole GUI
Console, mgmt_cli Tool, and Gaia CLI. Web Services are not a command source, but a way to access
the API server using HTTP requests. Reference:
Check Point Management APIs
What makes Anti-Bot unique compared to other Threat Prevention mechanisms, such as URL
Filtering, Anti-Virus, IPS, and Threat Emulation?
D
Explanation:
Anti-Bot is a post-infection malware protection that detects and blocks botnet communications from
infected hosts to Command & Control servers. It is different from other Threat Prevention
mechanisms that prevent malware from entering the network or executing on the
hosts. Reference:
Anti-Bot Software Blade
Which TCP-port does CPM process listen to?
D
Explanation:
The CPM process is the core process of the Security Management Server that handles all
management operations. It listens to TCP-port 19009 by default. Reference:
CPM process
Which method below is NOT one of the ways to communicate using the Management API’s?
D
Explanation:
The Management API supports three methods of communication: mgmt_cli command,
SmartConsole GUI dialog box, and Gaia CLI. Sending API commands over an http connection using
web-services is not a supported method. Reference:
Check Point Management APIs
Your manager asked you to check the status of SecureXL, and its enabled templates and features.
What command will you use to provide such information to manager?
B
Explanation:
The fwaccel stat command displays the status of SecureXL, and its enabled templates and features.
The other commands are either incorrect or incomplete. Reference: [SecureXL Commands]
SSL Network Extender (SNX) is a thin SSL VPN on-demand client that is installed on the remote user’s
machine via the web browser. What are the two modes of SNX?
B
Explanation:
SSL Network Extender (SNX) has two modes of operation: Network Mode and Application Mode.
Network Mode provides full network connectivity to the remote user, while Application Mode
provides access to specific applications on the corporate network. Reference: [SSL Network Extender]
Which command would disable a Cluster Member permanently?
C
Explanation:
The clusterXL_admin down -p command disables a Cluster Member permanently, meaning that it
will not rejoin the cluster even after a reboot. The other commands either disable a Cluster Member
temporarily or are invalid. Reference: [ClusterXL Administration Guide]
Which two of these Check Point Protocols are used by SmartEvent Processes?
D
Explanation:
SmartEvent Processes use two Check Point Protocols: ELA (Event Log Agent) and CPLOG (Check Point
Log). ELA collects logs from Security Gateways and forwards them to the Log Server. CPLOG is used
by the Log Server to communicate with the SmartEvent Server. Reference: [SmartEvent Architecture]
Fill in the blank: The tool _____ generates a R81 Security Gateway configuration report.
C
Explanation:
The cpinfo tool generates a R81 Security Gateway configuration report that includes information
about the hardware, operating system, product version, patches, and configuration
settings. Reference:
cpinfo - Check Point Support Center
Which of these statements describes the Check Point ThreatCloud?
D
Explanation:
The Check Point ThreatCloud is a worldwide collaborative security network that collects and analyzes
threat data from millions of sensors, security gateways, and other sources, and delivers real-time
threat intelligence and protection to Check Point products. Reference:
Check Point ThreatCloud
Automatic affinity means that if SecureXL is running, the affinity for each interface is automatically
reset every
B
Explanation:
Automatic affinity means that if SecureXL is running, the affinity for each interface is automatically
reset every 60 seconds based on the current traffic load. This ensures optimal performance and load
balancing of SecureXL instances. Reference:
SecureXL Mechanism
Which command will allow you to see the interface status?
C
Explanation:
The cphaprob -a if command displays the interface status of all cluster members, including the
interface name, IP address, state, monitor mode, and sync status. Reference:
cphaprob - Check Point
Support Center
Which command can you use to enable or disable multi-queue per interface?
A
Explanation:
The cpmq set command enables or disables multi-queue per interface. Multi-queue is a feature that
allows distributing the network traffic among several CPU cores, improving the throughput and
performance of the Security Gateway. Reference:
Multi-Queue