EMT Practice Test
1. Question Content...
Question1: Which default Gaia user has full read/write access?
Question2: Which option will match a connection regardless of its association with a VPN community?
Question4: How many users can have read/write access in Gaia Operating System at one time?
Question7: What command from the CLI would be used to view current licensing?
Question10: Aggressive Mode in IKEv1 uses how many packages for negotiation?
Question12: Why is a Central License the preferred and recommended method of licensing?
Question13: Choose what BEST describes a Session
Question14: Secure Internal Communication (SIC) is handled by what process?
Question16: Where can alerts be viewed?
Question19: Which of the following is NOT a tracking option? (Select three)
Question20: What is the default shell for the command line interface?
Question23: What kind of NAT enables Source Port Address Translation by default?
Question28: What is the main difference between Static NAT and Hide NAT?
Question29: Name the utility that is used to block activities that appear to be suspicious.
Question32: Which of the following is true about Stateful Inspection?
Question34: Using R80 Smart Console, what does a "pencil icon" in a rule mean?
Question36: What command would show the API server status?
Question37: What protocol is specifically used for clustered environments?
Question38: Which software blade does NOT accompany the Threat Prevention policy?
Question40: Which of the following is NOT an option to calculate the traffic direction?
Question41: What is the user ID of a user that have all the privileges of a root user?
Question45: Fill in the blanks: Gaia can be configured using _______ the ________.
Question47: Fill in the blank Backup and restores can be accomplished through
Question48: Which icon in the WebUI indicates that read/write access is enabled?
Question50: What is the purpose of the Stealth Rule?
Question51: Which Threat Prevention profile uses sanitization technology?
Question53: Which one of the following is TRUE?
Question54: Under which file is the proxy arp configuration stored?
Question57: What Identity Agent allows packet tagging and computer authentication?
Question59: Which of the following is a valid deployment option?
Question60: What is NOT an advantage of Packet Filtering?
Question62: In which scenario will an administrator need to manually define Proxy ARP?
Question64: The SIC Status "Unknown" means
Question65: Check Point licenses come in two forms. What are those forms?
Question67: Which policy type is used to enforce bandwidth and traffic control rules?
Question68: Which of the following is NOT a valid deployment option for R80?
Question74: Fill in the blank Once a license is activated, a___________should be installed.
Question75: When using Automatic Hide NAT, what is enabled by default?
Question76: Which of the following is used to enforce changes made to a Rule Base?
Question78: Which of the following cannot be configured in an Access Role Object?
Question80: Which of the following is NOT a tracking log option in R80.x?
Question81: Which method below is NOT one of the ways to communicate using the Management API's?
Question84: Which key is created during Phase 2 of a site-to-site VPN?
Question88: Which of the following is NOT a valid deployment option for R80?
Question89: Which Threat Prevention Profile is not included by default in R80 Management?
Question94: Which of the following is NOT a component of Check Point Capsule?
Question100: Which of the following is TRUE regarding Gaia command line?
Question102: Fill in the blanks: The _______ collects logs and sends them to the _______.
Question103: Where can administrator edit a list of trusted SmartConsole clients?
Question104: Which message indicates IKE Phase 2 has completed successfully?
Question105: Which command shows the installed licenses?
Question106: What is a role of Publishing?
Question107: Which command shows detailed information about VPN tunnels?
Question108: Which is a suitable command to check whether Drop Templates are activated or not?
Question110: Which of the following is the most secure means of authentication?
Question113: Access roles allow the firewall administrator to configure network access according to:
Question114: Fill in the blank: An LDAP server holds one or more ______________.
Question115: When an encrypted packet is decrypted, where does this happen?
Question117: What is true about the IPS-Blade?
Question119: Fill in the blank: Authentication rules are defined for ____________.
Question120: Choose what BEST describes users on Gaia Platform.
Question121: Which tool is used to enable ClusterXL?
Question123: Fill in the blanks: There are ________ types of software containers ________.
Question124: A SAM rule Is implemented to provide what function or benefit?
Question125: URL Filtering cannot be used to:
Question126: Which back up method uses the command line to create an image of the OS?
Question127: What default layers are included when creating a new policy layer?
Question128: What are the three main components of Check Point security management architecture?
Question131: Which of the following is NOT a role of the SmartCenter:
Question136: Which of the following is NOT supported by Bridge Mode Check Point Security Gateway
Question137: DLP and Geo Policy are examples of what type of Policy?
Question138: Check Point ClusterXL Active/Active deployment is used when:
Question139: In ____________ NAT, the ____________ is translated.
Question140: Which command shows the installed licenses in Expert mode?
Question141: Which of the following is NOT a valid configuration screen of an Access Role Object?
Question145: Which path below is available only when CoreXL is enabled?
Question146: The SmartEvent R80 Web application for real-time event monitoring is called:
Question147: What is the main difference between Threat Extraction and Threat Emulation?
Question150: View the rule below. What does the pen-symbol in the left column mean?
Question151: Fill in the blank: An identity server uses a ___________ for user authentication.
Question152: What are the three types of UserCheck messages?
Question154: Which of the following licenses are considered temporary?
Question156: Fill in the blanks: A Check Point software license consists of a__________ and _______.
Question158: When should you generate new licenses?
Question161: How are the backups stored in Check Point appliances?
Question162: What are the three deployment options available for a security gateway?
Question165: When configuring Anti-Spoofing, which tracking options can an Administrator select?
Question166: In SmartEvent, a correlation unit (CU) is used to do what?
Question168: Which of the following commands is used to monitor cluster members?
Question170: What is a reason for manual creation of a NAT rule?
Question171: Which of the following is NOT a policy type available for each policy package?
Question172: Which SmartConsole tab is used to monitor network and security performance?
Question173: What does it mean if Deyra sees the gateway status:
Choose the BEST answer.
Question177: What is the purpose of Captive Portal?
Question179: What object type would you use to grant network access to an LDAP user group?
Question184: What two ordered layers make up the Access Control Policy Layer?
Question186: When should you generate new licenses?
Question188: What are the two elements of address translation rules?
Question189: A layer can support different combinations of blades What are the supported blades:
Question191: How do logs change when the "Accounting" tracking option is enabled on a traffic rule?
Question192: Which tool is used to enable cluster membership on a Gateway?
Question193: What is the BEST command to view configuration details of all interfaces in Gaia CLISH?
Question194: What are the three components for Check Point Capsule?
