EMT Practice Test

1. Question Content...


Question List

Question1: As a valid Mobile Access Method, what feature provides Capsule Connect/VPN?

Question2: Which file gives you a list of all security servers in use, including port number?

Question3: John is using Management HA. Which Smartcenter should be connected to for making changes?

Question4: You have enabled "Full Log" as a tracking option to a security rule. However, you are still not seeing any data type information. What is the MOST likely reason?

Question5: What Is the difference between Updatable Objects and Dynamic Objects

Question6: Native Applications require a thin client under which circumstances?

Question7: On R81.10 the IPS Blade is managed by:

Question8: What information is NOT collected from a Security Gateway in a Cpinfo?

Question9: In the R81 SmartConsole, on which tab are Permissions and Administrators defined?

Question10: How to can you make sure that the old logs will be available after updating the Management to version R81.10 using the Advanced Upgrade Method?

Question11: VPN Link Selection will perform the following when the primary VPN link goes down?

Question12: What feature allows Remote-access VPN users to access resources across a site-to-site VPN tunnel?

Question13: What is a feature that enables VPN connections to successfully maintain a private and secure VPN session without employing Stateful Inspection?

Question14: Why would an administrator see the message below?

Question15: What is the benefit of Manual NAT over Automatic NAT?

Question16: Which command collects diagnostic data for analyzing customer setup remotely?

Question17: Check Point Management (cpm) is the main management process in that it provides the architecture for a consolidates management console. CPM allows the GUI client and management server to communicate via web services using ___________.

Question18: What could NOT be a reason for synchronization issues in a Management HA environment?

Question19: What is the purpose of the CPCA process?

Question20: What does the "unknown" SIC status shown on SmartConsole mean?

Question21: You want to gather and analyze threats to your mobile device. It has to be a lightweight app. Which application would you use?

Question22: What is the purpose of extended master key extension/session hash?

Question23: After verifying that API Server is not running, how can you start the API Server?

Question24: Packet acceleration (SecureXL) identifies connections by several attributes. Which of the attributes is NOT used for identifying connection?

Question25: Which of the following is NOT an internal/native Check Point command?

Question26: If a "ping"-packet is dropped by FW1 Policy -on how many inspection Points do you see this packet in "fw monitor"?

Question27: Alice & Bob are going to use Management Data Plane Separation and therefore the routing separation needs to be enabled. Which of the following command is true for enabling the Management Data Plane Separation (MDPS):

Question28: Which one of the following is true about Capsule Connect?

Question29: To fully enable Dynamic Dispatcher on a Security Gateway:

Question30: Besides fw monitor, what is another command that can be used to capture packets?

Question31: Joey wants to upgrade from R75.40 to R81 version of Security management. He will use Advanced Upgrade with Database Migration method to achieve this.
What is one of the requirements for his success?

Question32: You can select the file types that are sent for emulation for all the Threat Prevention profiles. Each profile defines a(n) _____ or _____ action for the file types.

Question33: Traffic from source 192.168.1.1 is going to www.google.com. The Application Control Blade on the gateway is inspecting the traffic. Assuming acceleration is enabled which path is handling the traffic?

Question34: What is the recommended number of physical network interfaces in a Mobile Access cluster deployment?

Question35: Which features are only supported with R81.10 Gateways but not R77.x?

Question36: Capsule Connect and Capsule Workspace both offer secured connection for remote users who are using their mobile devices. However, there are differences between the two.
Which of the following statements correctly identify each product's capabilities?

Question37: SSL Network Extender (SNX) is a thin SSL VPN on-demand client that is installed on the remote user's machine via the web browser. What are the two modes of SNX?

Question38: You plan to automate creating new objects using new R81 Management API. You decide to use GAIA CLI for this task.
What is the first step to run management API commands on GAIA's shell?

Question39: Office mode means that:

Question40: What are the services used for Cluster Synchronization?

Question41: Which one is not a valid Package Option In the Web GUI for CPUSE?

Question42: What are the attributes that SecureXL will check after the connection is allowed by Security Policy?

Question43: You want to allow your Mobile Access Users to connect to an internal file share. Adding the Mobile Application 'File Share' to your Access Control Policy in the SmartConsole didn't work. You will be only allowed to select Services for the 'Service & Application' column How to fix it?

Question44: Which utility allows you to configure the DHCP service on Gaia from the command line?

Question45: What is "Accelerated Policy Installation"?

Question46: What are the two modes for SNX (SSL Network Extender)?

Question47: To add a file to the Threat Prevention Whitelist, what two items are needed?

Question48: For best practices, what is the recommended time for automatic unlocking of locked admin accounts?

Question49: What is the limitation of employing Sticky Decision Function?

Question50: IF the first packet of an UDP session is rejected by a rule definition from within a security policy (not including the clean up rule), what message is sent back through the kernel?

Question51: By default, how often does Threat Emulation update the engine on the Security Gateway?

Question52: What is the correct command to observe the Sync traffic in a VRRP environment?

Question53: The Compliance Blade allows you to search for text strings in many windows and panes, to search for a value in a field, what would your syntax be?

Question54: How can you switch the active log file?

Question55: In Threat Prevention, you can create new or clone profiles but you CANNOT change the out-of-the-box profiles of:

Question56: Advanced Security Checkups can be easily conducted within:

Question57: SandBlast offers flexibility in implementation based on their individual business needs. What is an option for deployment of Check Point SandBlast Zero-Day Protection?

Question58: Due to high CPU workload on the Security Gateway, the security administrator decided to purchase a new multicore CPU to replace the existing single core CPU. After installation, is the administrator required to perform any additional tasks?

Question59: Which of the following statements about Site-to-Site VPN Domain-based is NOT true?

Question60: SandBlast has several functional components that work together to ensure that attacks are prevented in real-time. Which the following is NOT part of the SandBlast component?

Question61: Fill in the blank: Permanent VPN tunnels can be set on all tunnels in the community, on all tunnels for specific gateways, or ______ .

Question62: If the Active Security Management Server fails or if it becomes necessary to change the Active to Standby, the following steps must be taken to prevent data loss. Providing the Active Security Management Server is responsive, which if these steps should NOT be performed:

Question63: When Identity Awareness is enabled, which identity source(s) is(are) used for Application Control?

Question64: What is the order of NAT priorities?

Question65: SandBlast agent extends 0 day prevention to what part of the network?

Question66: Which of the following commands shows the status of processes?

Question67: What technologies are used to deny or permit network traffic?

Question68: SmartEvent does NOT use which of the following procedures to identify events:

Question69: On R81.10 when configuring Third-Party devices to read the logs using the LEA (Log Export API) the default Log Server uses port:

Question70: In the Check Point Firewall Kernel Module, each Kernel is associated with a key, which specifies the type of traffic applicable to the chain module. For Stateful Mode configuration, chain modules marked with
__________________ will not apply.

Question71: Fill in the blank: Identity Awareness AD-Query is using the Microsoft _______________ API to learn users from AD.

Question72: An administrator is creating an IPsec site-to-site VPN between his corporate office and branch office. Both offices are protected by Check Point Security Gateway managed by the same Security Management Server.
While configuring the VPN community to specify the pre-shared secret the administrator found that the check box to enable pre-shared secret and cannot be enabled.
Why does it not allow him to specify the pre-shared secret?

Question73: Which of these statements describes the Check Point ThreatCloud?

Question74: How can SmartView application accessed?

Question75: When doing a Stand-Alone Installation, you would install the Security Management Server with which other Check Point architecture component?

Question76: When configuring SmartEvent Initial settings, you must specify a basic topology for SmartEvent to help it calculate traffic direction for events. What is this setting called and what are you defining?

Question77: When an encrypted packet is decrypted, where does this happen?

Question78: What is the purpose of Priority Delta in VRRP?

Question79: What is the command to check the status of the SmartEvent Correlation Unit?

Question80: Check Point Management (cpm) is the main management process in that it provides the architecture for a consolidated management console. It empowers the migration from legacy Client-side logic to Server-side logic. The cpm process:

Question81: Customer's R81 management server needs to be upgraded to R81.10. What is the best upgrade method when the management server is not connected to the Internet?

Question82: What scenario indicates that SecureXL is enabled?

Question83: What are the three components for Check Point Capsule?

Question84: The SmartEvent R81 Web application for real-time event monitoring is called:

Question85: Why is a Central License the preferred and recommended method of licensing?

Question86: Which firewall daemon is responsible for the FW CLI commands?

Question87: CoreXL is supported when one of the following features is enabled:

Question88: UserCheck objects in the Application Control and URL Filtering rules allow the gateway to communicate with the users. Which action is not supported in UserCheck objects?

Question89: Where you can see and search records of action done by R81 SmartConsole administrators?

Question90: Fill in the blank: The "fw monitor" tool can be best used to troubleshoot ____________________.

Question91: GAiA Software update packages can be imported and installed offline in situation where:

Question92: What are the types of Software Containers?

Question93: The following command is used to verify the CPUSE version:

Question94: Which TCP port does the CPM process listen on?

Question95: You need to change the number of firewall Instances used by CoreXL. How can you achieve this goal?

Question96: SandBlast Mobile identifies threats in mobile devices by using on-device, network, and cloud-based algorithms and has four dedicated components that constantly work together to protect mobile devices and their data. Which component is NOT part of the SandBlast Mobile solution?

Question97: You notice that your firewall is under a DDoS attack and would like to enable the Penalty Box feature, which command you use?

Question98: When users connect to the Mobile Access portal they are unable to open File Shares.
Which log file would you want to examine?

Question99: According to out of the box SmartEvent policy, which blade will automatically be correlated into events?

Question100: Which statement is correct about the Sticky Decision Function?

Question101: Vanessa is firewall administrator in her company. Her company is using Check Point firewall on a central and several remote locations which are managed centrally by R77.30 Security Management Server. On central location is installed R77.30 Gateway on Open server. Remote locations are using Check Point UTM-1570 series appliances with R75.30 and some of them are using a UTM-1-Edge-X or Edge-W with latest available firmware. She is in process of migrating to R81.
What can cause Vanessa unnecessary problems, if she didn't check all requirements for migration to R81?

Question102: From SecureXL perspective, what are the tree paths of traffic flow:

Question103: Bob works for a big security outsourcing provider company and as he receives a lot of change requests per day he wants to use for scripting daily tasks the API services (torn Check Point for the GAIA API. Firstly he needs to be aware if the API services are running for the GAIA operating system. Which of the following Check Point Command is true:

Question104: What two ordered layers make up the Access Control Policy Layer?

Question105: The WebUI offers several methods for downloading hotfixes via CPUSE except:

Question106: Which member of a high-availability cluster should be upgraded first in a Zero downtime upgrade?

Question107: What must you do first if "fwm sic_reset" could not be completed?

Question108: How do you enable virtual mac (VMAC) on-the-fly on a cluster member?

Question109: What is false regarding prerequisites for the Central Deployment usage?

Question110: What needs to be configured if the NAT property 'Translate destination or client side' is not enabled in Global Properties?

Question111: You want to verify if your management server is ready to upgrade to R81.10. What tool could you use in this process?

Question112: Session unique identifiers are passed to the web api using which http header option?

Question113: What is the best sync method in the ClusterXL deployment?

Question114: Which of the following Check Point processes within the Security Management Server is responsible for the receiving of log records from Security Gateway?

Question115: Check Point security components are divided into the following components:

Question116: SmartEvent provides a convenient way to run common command line executables that can assist in investigating events. Right-clicking the IP address, source or destination, in an event provides a list of default and customized commands. They appear only on cells that refer to IP addresses because the IP address of the active cell is used as the destination of the command when run. The default commands are:

Question117: Which of the completed statements is NOT true? The WebUI can be used to manage user accounts and:

Question118: What is the correct description for the Dynamic Balancing / Split feature?

Question119: Fill in the blank. Once a certificate is revoked from the Security Gateway by the Security Management Server, the certificate information is ________ .

Question120: As an administrator, you may be required to add the company logo to reports. To do this, you would save the logo as a PNG file with the name 'cover-company-logo.png' and then copy that image file to which directory on the SmartEvent server?

Question121: What is the minimum number of CPU cores required to enable CoreXL?

Question122: After replacing a faulty Gateway the admin installed the new Hardware and want to push the policy. Installing the policy using the SmartConsole he got an Error for the Threat Prevention Policy. There is no error for the Access Control Policy. What will be the most common cause for the issue?

Question123: What are the correct steps upgrading a HA cluster (M1 is active, M2 is passive) using Multi-Version Cluster(MVC)Upgrade?

Question124: What will SmartEvent automatically define as events?

Question125: Which is the correct order of a log flow processed by SmartEvent components?

Question126: Which of the following process pulls application monitoring status?

Question127: You find one of your cluster gateways showing "Down" when you run the "cphaprob stat" command. You then run the "clusterXL_admin up" on the down member but unfortunately the member continues to show down. What command do you run to determine the cause?

Question128: Fill in the blanks: A _______ license requires an administrator to designate a gateway for attachment whereas a ________ license is automatically attached to a Security Gateway.

Question129: Alice works for a big security outsourcing provider company and as she receives a lot of change requests per day she wants to use for scripting daily (asks the API services from Check Point fof the Management API.
Firstly she needs to be aware if the API services are running for the management. Which of the following Check Point Command is true:

Question130: Which of the following is an identity acquisition method that allows a Security Gateway to identify Active Directory users and computers?

Question131: You are working with multiple Security Gateways enforcing an extensive number of rules. To simplify security administration, which action would you choose?

Question132: In R81, how do you manage your Mobile Access Policy?

Question133: SmartEvent uses it's event policy to identify events. How can this be customized?

Question134: Which of the following is NOT a valid type of SecureXL template?

Question135: To ensure that VMAC mode is enabled, which CLI command should you run on all cluster members?

Question136: When attempting to start a VPN tunnel, in the logs the error "no proposal chosen" is seen numerous times. No other VPN-related entries are present.
Which phase of the VPN negotiations has failed?

Question137: How long may verification of one file take for Sandblast Threat Emulation?

Question138: What is the SandBlast Agent designed to do?

Question139: Which of the following Windows Security Events will not map a username to an IP address in Identity Awareness?

Question140: In terms of Order Rule Enforcement, when a packet arrives at the gateway, the gateway checks it against the rules in the top Policy Layer, sequentially from top to bottom Which of the following statements is correct?

Question141: What SmartEvent component creates events?

Question142: The log server sends what to the Correlation Unit?

Question143: Which two of these Check Point Protocols are used by SmartEvent Processes?

Question144: In what way are SSL VPN and IPSec VPN different?

Question145: In what way is Secure Network Distributor (SND) a relevant feature of the Security Gateway?

Question146: How many versions, besides the destination version, are supported in a Multi-Version Cluster Upgrade?

Question147: What is the command to check the status of Check Point processes?

Question148: Main Mode in IKEv1 uses how many packages for negotiation?

Question149: Which of the following statements is TRUE about R81 management plug-ins?

Question150: Vanessa is expecting a very important Security Report. The Document should be sent as an attachment via e-mail. An e-mail with Security_report.pdf file was delivered to her e-mail inbox. When she opened the PDF file, she noticed that the file is basically empty and only few lines of text are in it. The report is missing some graphs, tables and links.
Which component of SandBlast protection is her company using on a Gateway?

Question151: Within the Check Point Firewall Kernel resides Chain Modules, which are individually responsible for the inspection of a specific blade or feature that has been enabled in the configuration of the gateway. For Wire mode configuration, chain modules marked with _______ will not apply.

Question152: You are investigating issues with to gateway cluster members are not able to establish the first initial cluster synchronization. What service is used by the FWD daemon to do a Full Synchronization?

Question153: Which of the following is a new R81 Gateway feature that had not been available in R77.X and older?

Question154: Connections to the Check Point R81 Web API use what protocol?

Question155: How can you grant GAiAAPI Permissions for a newly created user?

Question156: Which command shows the current connections distributed by CoreXL FW instances?

Question157: Can Check Point and Third-party Gateways establish a certificate-based Site-to-Site VPN tunnel?

Question158: You have successfully backed up Check Point configurations without the OS information. What command would you use to restore this backup?

Question159: Sieve is a Cyber Security Engineer working for Global Bank with a large scale deployment of Check Point Enterprise Appliances Steve's manager. Diana asks him to provide firewall connection table details from one of the firewalls for which he is responsible. Which of these commands may impact performance briefly and should not be used during heavy traffic times of day?

Question160: Which configuration file contains the structure of the Security Server showing the port numbers, corresponding protocol name, and status?

Question161: What are the Threat Prevention software components available on the Check Point Security Gateway?

Question162: What has to be taken into consideration when configuring Management HA?

Question163: Fill in the blank: Browser-based Authentication sends users to a web page to acquire identities using ________
.

Question164: What command verifies that the API server is responding?

Question165: If there are two administration logged in at the same time to the SmartConsole, and there are objects locked for editing, what must be done to make them available or other administrators? (Choose the BEST answer.)

Question166: In SmartConsole, objects are used to represent physical and virtual network components and also some logical components. These objects are divided into several categories. Which of the following is NOT an objects category?

Question167: What component of R81 Management is used for indexing?

Question168: Please choose correct command to add an "emailserver1" host with IP address 10.50.23.90 using GAiA management CLI?

Question169: What are the minimum open server hardware requirements for a Security Management Server/Standalone in R81?

Question170: What is the Implicit Clean-up Rule?

Question171: Rugged appliances are small appliances with ruggedized hardware and like Quantum Spark appliance they use which operating system?

Question172: What is the recommended way to have a redundant Sync connection between the cluster nodes?

Question173: What are the steps to configure the HTTPS Inspection Policy?

Question174: Bob has finished io setup provisioning a secondary security management server. Now he wants to check if the provisioning has been correct. Which of the following Check Point command can be used to check if the security management server has been installed as a primary or a secondary security management server?

Question175: John detected high load on sync interface. Which is most recommended solution?

Question176: What processes does CPM control?

Question177: How many policy layers do Access Control policy support?

Question178: During the Check Point Stateful Inspection Process, for packets that do not pass Firewall Kernel Inspection and are rejected by the rule definition, packets are:

Question179: Which method below is NOT one of the ways to communicate using the Management API's?

Question180: With SecureXL enabled, accelerated packets will pass through the following:

Question181: When gathering information about a gateway using CPINFO, what information is included or excluded when using the "-x" parameter?

Question182: Fill in the blanks: In the Network policy layer, the default action for the Implied last rule is ____ all traffic.
However, in the Application Control policy layer, the default action is ______ all traffic.

Question183: Alice wants to upgrade the current security management machine from R80.40 to R81.10 and she wants to check the Deployment Agent status over the GAIA CLISH. Which of the following GAIACLISH command is true?

Question184: The "MAC magic" value must be modified under the following condition:

Question185: SecureXL is able to accelerate the Connection Rate using templates. Which attributes are used in the template to identify the connection?

Question186: Check Point ClusterXL Active/Active deployment is used when:

Question187: SandBlast appliances can be deployed in the following modes:

Question188: How would you deploy TE250X Check Point appliance just for email traffic and in-line mode without a Check Point Security Gateway?

Question189: Which web services protocol is used to communicate to the Check Point R81 Identity Awareness Web API?

Question190: Which of the SecureXL templates are enabled by default on Security Gateway?

Question191: What cloud-based SandBlast Mobile application is used to register new devices and users?

Question192: What are not possible commands to acquire the lock in order to make changes in Clish or Web GUI?

Question193: What is the difference between SSL VPN and IPSec VPN?

Question194: Which option, when applied to a rule, allows traffic to VPN gateways in specific VPN communities?

Question195: What is a possible command to delete all of the SSH connections of a gateway?

Question196: Which of the following Check Point commands is true to enable Multi-Version Cluster (MVC)?

Question197: Which of the following Central Deployment is NOT a limitation in R81.10 SmartConsole?

Question198: On what port does the CPM process run?

Question199: To find records in the logs that shows log records from the Application & URL Filtering Software Blade where traffic was dropped, what would be the query syntax?

Question200: When detected, an event can activate an Automatic Reaction. The SmartEvent administrator can create and configure one Automatic Reaction, or many, according to the needs of the system. Which of the following statement is false and NOT part of possible automatic reactions:

Question201: Bob is going to prepare the import of the exported R81.10 management database. Now he wants to verify that the installed tools on the new target security management machine are able to handle the R81.10 release.
Which of the following Check Point command is true?

Question202: Using mgmt_cli, what is the correct syntax to import a host object called Server_1 from the CLI?

Question203: Using fw monitor you see the following inspection point notion E and i what does that mean?

Question204: What is the default shell of Gaia CLI?

Question205: Can multiple administrators connect to a Security Management Server at the same time?

Question206: Which of the following is NOT an alert option?

Question207: Which is the least ideal Synchronization Status for Security Management Server High Availability deployment?

Question208: What is the protocol and port used for Health Check and State Synchronization in ClusterXL?

Question209: DLP and Geo Policy are examples of what type of Policy?

Question210: What key is used to save the current CPView page in a filename format cpview_"cpview process ID".cap"number of captures"?

Question211: What is the purpose of the command "ps aux | grep twd"?

Question212: What is the best method to upgrade a Security Management Server to R81.x when it is not connected to the Internet?

Question213: Due to high CPU workload on the Security Gateway, the security administrator decided to purchase a new CPU to replace the existing single core CPU. After installation, is the administrator required to perform any additional tasks?

Question214: Which of the following is NOT a component of Check Point Capsule?

Question215: The fwd process on the Security Gateway sends logs to the fwd process on the Management Server, where it is forwarded to___________via____________

Question216: Both ClusterXL and VRRP are fully supported by Gaia R81.10 and available to all Check Point appliances.
Which the following command is NOT related to redundancy and functions?

Question217: SmartEvent has several components that function together to track security threats. What is the function of the Correlation Unit as a component of this architecture?

Question218: Which two Cluster Solutions are available under R81.10?

Question219: Ken wants to obtain a configuration lock from other administrator on R81 Security Management Server. He can do this via WebUI or via CLI.
Which command should he use in CLI? (Choose the correct answer.)

Question220: Which path below is available only when CoreXL is enabled?

Question221: The CPD daemon is a Firewall Kernel Process that does NOT do which of the following?

Question222: You noticed that CPU cores on the Security Gateway are usually 100% utilized and many packets were dropped. You don't have a budget to perform a hardware upgrade at this time. To optimize drops you decide to use Priority Queues and fully enable Dynamic Dispatcher. How can you enable them?

Question223: Which Check Point process provides logging services, such as forwarding logs from Gateway to Log Server, providing Log Export API (LEA) & Event Logging API (EL-A) services.

Question224: Which command lists firewall chain?

Question225: How can you see historical data with cpview?

Question226: In order to get info about assignment (FW, SND) of all CPUs in your SGW, what is the most accurate CLI command?

Question227: Which statement is false in respect of the SmartConsole after upgrading the management server to R81.10?

Question228: View the rule below. What does the lock-symbol in the left column mean? (Choose the BEST answer.)

Question229: Which Remote Access Client does not provide an Office-Mode Address?

Question230: Which Check Point software blade provides protection from zero-day and undiscovered threats?

Question231: In Logging and Monitoring, the tracking options are Log, Detailed Log and Extended Log. Which of the following options can you add to each Log, Detailed Log and Extended Log?

Question232: Which command is used to set the CCP protocol to Multicast?

Question233: The Firewall Administrator is required to create 100 new host objects with different IP addresses. What API command can he use in the script to achieve the requirement?

Question234: Packet acceleration (SecureXL) identities connections by several attributes. Which of the attributes is NOT used for identifying connection?

Question235: The Security Gateway is installed on GAIA R81. The default port for the Web User Interface is ______ .

Question236: The "Hit count" feature allows tracking the number of connections that each rule matches. Will the Hit count feature work independently from logging and Track the hits if the Track option is set to "None"?

Question237: Installations and upgrades with CPUSE require that the CPUSE agent is up-to-date. Usually the latest build is downloaded automatically. How can you verify the CPUSE agent build?

Question238: What is required for a certificate-based VPN tunnel between two gateways with separate management systems?

Question239: Which of the following type of authentication on Mobile Access can NOT be used as the first authentication method?

Question240: Fill in the blank: The R81 SmartConsole, SmartEvent GUI client, and _______ consolidate billions of logs and shows then as prioritized security events.

Question241: What are the blades of Threat Prevention?

Question242: Which of the following describes how Threat Extraction functions?

Question243: What is the mechanism behind Threat Extraction?

Question244: When Configuring Endpoint Compliance Settings for Applications and Gateways within Mobile Access, which of the three approaches will allow you to configure individual policies for each application?

Question245: In a Client to Server scenario, which inspection point is the first point immediately following the tables and rule base check of a packet coming from outside of the network?

Question246: What API command below creates a new host object with the name "My Host" and IP address of "192 168 0
10"?

Question247: How many layers make up the TCP/IP model?

Question248: What is the base level encryption key used by Capsule Docs?

Question249: What are the modes of SandBlast Threat Emulation deployment?

Question250: If SecureXL is disabled which path is used to process traffic?

Question251: Which Check Point software blades could be enforced under Threat Prevention profile using Check Point R81.10 SmartConsole application?

Question252: What is the minimum amount of RAM needed for a Threat Prevention Appliance?

Question253: Which CLI command will reset the IPS pattern matcher statistics?

Question254: What CLI command compiles and installs a Security Policy on the target's Security Gateways?

Question255: Fill in the blank: Authentication rules are defined for ________ .

Question256: What is the valid range for VRID value in VRRP configuration?