Free CheckPoint 156-215.13 Exam Dumps Questions & Answers

Looking at the SYN packets in the Wireshark output,

select the statement that is true about NAT.

• A.  This is an example of Static NAT and Translate destination on client side checked in Global Properties.
• B.  This is an example of Hide NAT.
• C.  There is not enough information provided in the Wireshark capture to determine the NAT settings.
• D.  This is an example of Static NAT and Translate destination on client side unchecked in Global Properties.

You are a Security Administrator who has installed Security Gateway R76 on your network. You need to allow a specific IP address range for a partner site to access your intranet Web server. To limit the partner's access for HTTP and FTP only, you did the following:
1) Created manual Static NAT rules for the Web server.
2) Cleared the following settings in the Global Properties > Network Address Translation screen:
-Allow bi-directional NAT
-Translate destination on client side
Do the above settings limit the partner's access?

• A.  Yes. This will ensure that traffic only matches the specific rule configured for this traffic, and that the Gateway translates the traffic after accepting the packet.
• B.  Yes. Both of these settings are only applicable to automatic NAT rules.
• C.  No. The first setting is only applicable to automatic NAT rules. The second setting will force translation by the kernel on the interface nearest to the client.
• D.  No. The first setting is not applicable. The second setting will reduce performance.

Where can an administrator configure the notification action in the event of a policy install time change?

• A.  SmartDashboard > Security Gateway Object > Advanced Properties Tab
• B.  SmartView Monitor > Gateways > Thresholds Settings
• C.  SmartDashboard > Policy Package Manager
• D.  SmartView Monitor > Gateway Status > System Information > Thresholds

Several Security Policies can be used for different installation targets. The firewall protecting Human Resources' servers should have a unique Policy Package. These rules may only be installed on this machine and not accidentally on the Internet firewall. How can this be configured?

• A.  When selecting the correct firewall in each line of the row Install On of the Rule Base, only this firewall is shown in the list of possible installation targets after selecting Policy > Install.
• B.  A Rule Base is always installed on all possible targets. The rules to be installed on a firewall are defined by the selection in the row Install On of the Rule Base.
• C.  In the SmartDashboard policy, select the correct firewall to be the Specific Target of the rule.
• D.  A Rule Base can always be installed on any Check Point firewall object. It is necessary to select the appropriate target directly after selecting Policy > Install.

Which of the following tools is used to generate a Security Gateway R76 configuration report?

• A.  fw cpinfo
• B.  infoview
• C.  infoCP
• D.  cpinfo