Ultimate Guide to Prepare Free CheckPoint 156-587 Exam Questions and Answer
Pass CheckPoint 156-587 Tests Engine pdf - All Free Dumps
NEW QUESTION # 43
The FileApp parser in the Content Awareness engine does not extract text from which of the following file types?
- A. PDF
- B. Microsoft Office .docx files
- C. Microsoft Office Excel files
- D. Microsoft Office Powerpoint files
Answer: A
NEW QUESTION # 44
If the cpsemd process of SmartEvent has crashed or is having trouble coming up, then it usually indicates that __________.
- A. The SmartEvent core on the Solr indexer has been deleted
- B. The loqqed in administrator does not have permissions to run SmartEvent
- C. Cpd daemon is unable to connect to the log server
- D. Postgres database is down
Answer: D
NEW QUESTION # 45
The Check Point Firewall Kernel is the core component of the Gaia operating system and an integral part of the traffic inspection process. There are two procedures available for debugging the firewall kernel. Which procedure/command is used for troubleshooting packet drops and other kernel activities while using minimal resources (1 MB buffer)?
- A. fw ctl zdebug
- B. fw ctl debug/kdebug
- C. fwk ctl debug
- D. fw debug ctl
Answer: B
NEW QUESTION # 46
That is the proper command for allowing the system to create core files?
- A. > set core-dump enable
> save config - B. service core-dump start
- C. $FWDIR/scripts/core-dump-enable.sh
- D. # set core-dump enable
# save config
Answer: A
NEW QUESTION # 47
SmartEvent utilizes the Log Server, Correlation Unit and SmartEvent Server to aggregate logs and identify security events. The three main processes that govern these SmartEvent components are:
- A. eventiasv, eventiarp,eventiacu
- B. cpsemd, cpsead, and DBSync
- C. fwd, secu, sesrv
- D. cpcu, cplog, cpse
Answer: B
NEW QUESTION # 48
What cli command is run on the GW to verify communication to the Identity Collector?
- A. pdp connections idc
- B. fwd connected
- C. pep connections idc
- D. show idc connections
Answer: A
NEW QUESTION # 49
What is the Security Gateway directory where an administrator can find vpn debug log files generated during Site-to-Site VPN troubleshooting?
- A. $FWDIR/log/
- B. $CPDIR/conf/
- C. $FWDIR/conf/
- D. /opt/CPsuiteR80/vpn/log/
Answer: A
NEW QUESTION # 50
Your users are having trouble opening a Web page and you need to troubleshoot it. You open the Smart Console, and you get the following message when you navigate to the Logs and Monitor
"SmartLog is not active or Failed to parse results from server". What is the first thing you can try to resolve it?
- A. Run the commands on the SMS: smartlogstart and smartlogstop
- B. cpmstop and cpmstart
- C. smartlog_server restart
- D. smartlog debug on and smartlog debug off
Answer: A
NEW QUESTION # 51
Captive Portal, PDP and PEP run in what space?
- A. CPM
- B. User
- C. FWD
- D. Kernel
Answer: B
NEW QUESTION # 52
Which of the following would NOT be a flag when debugging a unified policy?
- A. tls
- B. connection
- C. clob
- D. rulebase
Answer: A
NEW QUESTION # 53
What process monitors, terminates, and restarts critical Check Point processes as necessary?
- A. CPM
- B. CPVVD
- C. FWM
- D. FWD
Answer: B
NEW QUESTION # 54
User defined URLS and HTTPS Inspection User defined URLs on the Security Gateway are stored in which database file?
- A. urlf_https.bin
- B. https_db.bin
- C. https_urlf.bin
- D. urlf_db.bin
Answer: D
NEW QUESTION # 55
What are the main components of Check Point's Security Management architecture?
- A. Management server, management database, log server, automation server
- B. Management server. Security Gateway. Multi-Domain Server. SmartEvent Server
- C. Management server. Log Server, LDAP Server, Web Server
- D. Management server, Log server. Gateway server. Security server
Answer: A
NEW QUESTION # 56
Check Point Access Control Daemons contains several daemons for Software Blades and features. Which Daemon is used for Application & Control URL Filtering?
- A. rad
- B. pepd
- C. pdpd
- D. cprac
Answer: A
Explanation:
https://support.checkpoint.com/results/sk/sk97638
NEW QUESTION # 57
When a User Mode process suddenly crashes, it may create a core dump file. Which of the following information is available in the core dump and may be used to identify the root cause of the crash?
i. Program Counter
ii. Stack Pointer
iii. Memory management information
iv. Other Processor and OS flags / information
- A. Only iii
- B. i and ii only
- C. i, ii, iii and iv
- D. iii and iv only
Answer: C
NEW QUESTION # 58
What version of Check Point can Security Gateways begin dynamically distributing Logs between log servers?
- A. R30
- B. R75
- C. R77
- D. R81
Answer: D
NEW QUESTION # 59
You are seeing output from the previous kernel debug. What command should you use to avoid that?
- A. fw ctl debug 0
- B. fw ctl zdebug disable
- C. fw ctl clean buffer = 0
- D. fw ctl debug = 0
Answer: A
Explanation:
To reset all debug flags and enable only the default debug flags in all kernel modules:
fw ctl debug 0
https://sc1.checkpoint.com/documents/R80.30/WebAdminGuides/EN/CP_R80.30_QoS_AdminGu ide/html_frameset.htm?topic=documents/R80.30/WebAdminGuides/EN/CP_R80.30_QoS_Admin Guide/202665
NEW QUESTION # 60
What Check Point process controls logging?
- A. FWD
- B. CPM
- C. CPD
- D. CPVVD
Answer: A
NEW QUESTION # 61
VPN issues may result from misconfiguration, communication failure, or incompatible default configurations between peers. Which basic command syntax needs to be used for troubleshooting Site-to-Site VPN issues?
- A. vpn debug truncon
- B. fw debug truncon
- C. vpn truncon debuq
- D. cp debug truncon
Answer: A
NEW QUESTION # 62
......
Online Exam Practice Tests with detailed explanations!: https://actualtests.crampdf.com/156-587-exam-prep-dumps.html