Practice Exams:

Free 156-215.81 Exam Braindumps

Pass your Check Point Certified Security Administrator R81 exam with these free Questions and Answers

Page 4 of 74
PDF with 369 Questions
QUESTION 11

Both major kinds of NAT support Hide and Static NAT. However, one offers more flexibility. Which statement is true?

  1. A. Manual NAT can offer more flexibility than Automatic NAT.
  2. B. Dynamic Network Address Translation (NAT) Overloading can offer more flexibility than Port Address Translation.
  3. C. Dynamic NAT with Port Address Translation can offer more flexibility than Network Address Translation (NAT) Overloading.
  4. D. Automatic NAT can offer more flexibility than Manual NAT.

Correct Answer: A
"An Auto-NAT rule only uses the source address and port when matching and translating. Manual NAT can match and translate source and destination addresses and ports." https://networkdirection.net/articles/firewalls/firepowermanagementcentre/fmcnatpolicies/

QUESTION 12

Fill in the blank: The ______ feature allows administrators to share a policy with other policy packages.

  1. A. Concurrent policy packages
  2. B. Concurrent policies
  3. C. Global Policies
  4. D. Shared policies

Correct Answer: D
"The Shared Policies section in the Security Policies shows the policies that are not in a Policy package. They are shared between all Policy packages." https://sc1.checkpoint.com/documents/R81/WebAdminGuides/EN/CP_R81_SecurityManagement_AdminGuide

QUESTION 13

You want to verify if there are unsaved changes in GAiA that will be lost with a reboot. What command can be used?

  1. A. show unsaved
  2. B. show save-state
  3. C. show configuration diff
  4. D. show config-state

Correct Answer: D

QUESTION 14

Which of the following is NOT an advantage to using multiple LDAP servers?

  1. A. You achieve a faster access time by placing LDAP servers containing the database at remote sites
  2. B. You achieve compartmentalization by allowing a large number of users to be distributed across several servers
  3. C. Information on a user is hidden, yet distributed across several servers.
  4. D. You gain High Availability by replicating the same information on several servers

Correct Answer: C

QUESTION 15

What is the purpose of a Clean-up Rule?

  1. A. Clean-up Rules do not server any purpose.
  2. B. Provide a metric for determining unnecessary rules.
  3. C. To drop any traffic that is not explicitly allowed.
  4. D. Used to better optimize a policy.

Correct Answer: C
These are basic access control rules we recommend for all Rule Bases:
There is also an implied rule that drops all traffic, but you can use the Cleanup rule to log the traffic.

Page 4 of 74
PDF with 369 Questions

Post your Comments and Discuss CheckPoint 156-215.81 exam with other Community members: