EMT Practice Test
1. Question Content...
Question2: When using CPSTAT, what is the default port used by the AMON server?
Question3: Which of the following commands shows the status of processes?
Question5: On what port does the CPM process run?
Question14: Which NAT rules are prioritized first?
Question15: Which command shows detailed information about VPN tunnels?
Question16: Which remote Access Solution is clientless?
Question18: In ClusterXL Load Sharing Multicast Mode:
Question21: SmartEvent Security Checkups can be run from the following Logs and Monitor activity:
Question23: SmartConsole R80 x requires the following ports to be open for SmartEvent.
Question24: What is not a component of Check Point SandBlast?
Question26: John detected high load on sync interface. Which is most recommended solution?
Question27: What is considered Hybrid Emulation Mode?
Question29: Which of the following is NOT an attribute of packet acceleration?
Question31: Which is not a blade option when configuring SmartEvent?
Question34: What is the name of the secure application for Mail/Calendar for mobile devices?
Question39: What is the order of NAT priorities?
Question40: What is the valid range for VRID value in VRRP configuration?
Question43: Under which file is the proxy arp configuration stored?
Question44: Which blades and or features are not supported in R80?
Question45: Which command lists all tables in Gaia?
Question48: What does the Log "Views" tab show when SmartEvent is Correlating events?
Question50: What is the difference between an event and a log?
Question52: Which of these statements describes the Check Point ThreatCloud?
Question53: The back end database for Check Point R80 Management uses:
Question58: Why would an administrator see the message below?
Question59: Can multiple administrators connect to a Security Management Server at the same time?
Question60: In R80 spoofing is defined as a method of:
Question61: From SecureXL perspective, what are the tree paths of traffic flow:
Question64: Which firewall daemon is responsible for the FW CLI commands?
Question65: Which encryption algorithm is the least secured?
Question67: If you needed the Multicast MAC address of a cluster, what command would you run?
Question69: What is true of the API server on R80.10?
Question72: CoreXL is NOT supported when one of the following features is enabled: (Choose three)
Question76: What are the methods of SandBlast Threat Emulation deployment?
Question77: Which is NOT a SmartEvent component?
Question80: The WebUI offers several methods for downloading hotfixes via CPUSE except:
Question81: R80.10 management server can manage gateways with which versions installed?
Question82: What is the benefit of "tw monitor" over "tcpdump"?
Question83: Which statement is NOT TRUE about Delta synchronization?
Question84: The log server sends what to the Correlation Unit?
Question85: In the Check Point Security Management Architecture, which component(s) can store logs?
Question86: What is true about VRRP implementations?
Question87: Which of the SecureXL templates are enabled by default on Security Gateway?
Question88: What is the most recommended way to install patches and hotfixes?
Question89: Which path below is available only when CoreXL is enabled?
Question91: To add a file to the Threat Prevention Whitelist, what two items are needed?
Question93: Which command would disable a Cluster Member permanently?
Question96: What is true about the IPS-Blade?
Question97: Check Point security components are divided into the following components:
Question98: What processes does CPM control?
Question99: Which view is NOT a valid CPVIEW view?
Question100: What Factor preclude Secure XL Templating?
Question102: By default, the R80 web API uses which content-type in its response?
Question103: With SecureXL enabled, accelerated packets will pass through the following:
Question104: Which of the following is NOT supported by CPUSE?
Question106: What are the steps to configure the HTTPS Inspection Policy?
Question109: Which one of the following is true about Capsule Connect?
Question110: Which of the following is a task of the CPD process?
Question114: Which command shows actual allowed connections in state table?
Question115: What is the purpose of extended master key extension/session hash?
Question116: What is the correct order of the default "fw monitor" inspection points?
Question117: Which command is used to display status information for various components?
Question118: To fully enable Dynamic Dispatcher on a Security Gateway:
Question119: What is the least amount of CPU cores required to enable CoreXL?
Question121: What is a best practice before starting to troubleshoot using the "fw monitor" tool?
Question123: What is the purpose of a SmartEvent Correlation Unit?
Question126: What is the correct command to observe the Sync traffic in a VRRP environment?
Question127: What is the default size of NAT table fwx_alloc?
Question130: Which command is used to obtain the configuration lock in Gaia?
Question136: How do Capsule Connect and Capsule Workspace differ?
Question137: Which statement is true about ClusterXL?
Question139: Which command can you use to verify the number of active concurrent connections?
Question141: What is the minimum amount of RAM needed for a Threat Prevention Appliance?
Question145: Which packet info is ignored with Session Rate Acceleration?
Question146: You can access the ThreatCloud Repository from:
Question151: In the Firewall chain mode FFF refers to:
Question152: How long may verification of one file take for Sandblast Threat Emulation?


