156-315.81 Exam Dumps | What is the purpose of extended master key extension/session hash?

<< Prev Question Next Question >>

Question 150/307

What is the purpose of extended master key extension/session hash?

A. UDP VOIP protocol extension

B. In case of TLS1.x it is a prevention of a Man-in-the-Middle attack/disclosure of the client-server communication

C. Special TCP handshaking extension

D. Supplement DLP data watermark

Question List (307q): Question 1: What is the minimum amount of RAM needed for a Threat Preven...; Question 2: Alice & Bob are going to use Management Data Plane Separ...; Question 3: Which one is not a valid Package Option In the Web GUI for C...; Question 4: Fill in the blank: The command ___________________ provides ...; Question 5: When Identity Awareness is enabled, which identity source(s)...; Question 6: When detected, an event can activate an Automatic Reaction. ...; Question 7: Which type of Endpoint Identity Agent includes packet taggin...; Question 8: What is the responsibility of SOLR process on R81.20 managem...; Question 9: What needs to be configured if the NAT property 'Translate d...; Question 10: Matt wants to upgrade his old Security Management server to ...; Question 11: Which pre-defined Permission Profile should be assigned to a...; Question 12: What are the main stages of a policy installations?...; Question 13: There are 4 ways to use the Management API for creating host...; Question 14: Where do you create and modify the Mobile Access policy in R...; Question 15: Both ClusterXL and VRRP are fully supported by Gaia R81.20 a...; Question 16: Which of the following processes pulls the application monit...; Question 17: Which Mobile Access Application allows a secure container on...; Question 18: What kind of information would you expect to see using the s...; Question 19: You have successfully backed up Check Point configurations w...; Question 20: R81.20 management server can manage gateways with which vers...; Question 21: An established connection is going to www.google.com. The Ap...; Question 22: Alice works for a big security outsourcing provider company ...; Question 23: The Event List within the Event tab contains:...; Question 24: Which command can you use to verify the number of active con...; Question 25: Which two Cluster Solutions are available under R81.20?...; Question 26: Which command is used to add users to or from existing roles...; Question 27: What should the admin do in case the Primary Management Serv...; Question 28: CoreXL is supported when one of the following features is en...; Question 29: Which of the following Windows Security Events will not map ...; Question 30: What happen when IPS profile is set in Detect Only Mode for ...; Question 31: Alice knows about the Check Point Management HA installation...; Question 32: You are working with multiple Security Gateways enforcing an...; Question 33: Packet acceleration (SecureXL) identifies connections by sev...; Question 34: In R81, where do you manage your Mobile Access Policy?...; Question 35: Which of the following is NOT a method used by identity Awar...; Question 36: What are the types of Software Containers?...; Question 37: Which view is NOT a valid CPVIEW view?...; Question 38: In what way is Secure Network Distributor (SND) a relevant f...; Question 39: SecureXL improves non-encrypted firewall traffic throughput ...; Question 40: When using the Mail Transfer Agent, where are the debug logs...; Question 41: When doing a Stand-Alone Installation, you would install the...; Question 42: The customer has about 150 remote access user with a Windows...; Question 43: If an administrator wants to add manual NAT for addresses no...; Question 44: Fill in the blank: The IPS policy for pre-R81 gateways is in...; Question 45: What feature allows Remote-access VPN users to access resour...; Question 46: Fill in the blank: A new license should be generated and ins...; Question 47: Which Check Point daemon monitors the other daemons?...; Question 48: D18912E1457D5D1DDCBD40AB3BF70D5D The system administrator of...; Question 49: There are multiple types of licenses for the various VPN com...; Question 50: In which deployment is the security management server and Se...; Question 51: The SmartEvent R81 Web application for real-time event monit...; Question 52: Which of the following is NOT a valid type of SecureXL templ...; Question 53: Which Operating Systems are supported for the Endpoint Secur...; Question 54: If there are two administration logged in at the same time t...; Question 55: What has to be taken into consideration when configuring Man...; Question 56: How do you enable virtual mac (VMAC) on-the-fly on a cluster...; Question 57: You have pushed policy to GW-3 and now cannot pass traffic t...; Question 58: What is "Accelerated Policy Installation"?...; Question 59: Which is the correct order of a log flow processed by SmartE...; Question 60: Which one of these features is NOT associated with the Check...; Question 61: What is true about the IPS-Blade?...; Question 62: Which statement is true regarding redundancy?...; Question 63: Fill in the blank: Browser-based Authentication sends users ...; Question 64: What are the services used for Cluster Synchronization?...; Question 65: How many interfaces can you configure to use the Multi-Queue...; Question 66: What statement best describes the Proxy ARP feature for Manu...; Question 67: fwssd is a child process of which of the following Check Poi...; Question 68: How would you enable VMAC Mode in ClusterXL?...; Question 69: If SecureXL is disabled which path is used to process traffi...; Question 70: What is the valid range for Virtual Router Identifier (VRID)...; Question 71: Fill in the blank. Once a certificate is revoked from the Se...; Question 72: What are valid authentication methods for mutual authenticat...; Question 73: Which command would you use to set the network interfaces' a...; Question 74: Which of the following is NOT a type of Endpoint Identity Ag...; Question 75: What ports are used for SmartConsole to connect to the Secur...; Question 76: SandBlast appliances can be deployed in the following modes:...; Question 77: What are scenarios supported by the Central Deployment in Sm...; Question 78: Which of the following is NOT a VPN routing option available...; Question 79: identity Awareness allows easy configuration for network acc...; Question 80: Ken wants to obtain a configuration lock from other administ...; Question 81: How often does Threat Emulation download packages by default...; Question 82: Hit Count is a feature to track the number of connections th...; Question 83:; Question 84: Which command will reset the kernel debug options to default...; Question 85: What technologies are used to deny or permit network traffic...; Question 86: The fwd process on the Security Gateway sends logs to the fw...; Question 87: Bob is asked by Alice to disable the SecureXL mechanism temp...; Question 88: Which 3 types of tracking are available for Threat Preventio...; Question 89: SSL Network Extender (SNX) is a thin SSL VPN on-demand clien...; Question 90: Office mode means that:; Question 91: Secure Configuration Verification (SCV), makes sure that rem...; Question 92: What is the most recommended way to install patches and hotf...; Question 93: In SmartConsole, objects are used to represent physical and ...; Question 94: What does the "unknown" SIC status shown on SmartConsole mea...; Question 95: When users connect to the Mobile Access portal they are unab...; Question 96: Which of the following is NOT an alert option?...; Question 97: With Mobile Access enabled, administrators select the web-ba...; Question 98: Which of the following is NOT a component of Check Point Cap...; Question 99: After verifying that API Server is not running, how can you ...; Question 100: SmartEvent has several components that function together to ...; Question 101: Which software blade does NOT accompany the Threat Preventio...; Question 102: Name the authentication method that requires token authentic...; Question 103: You are the administrator for ABC Corp. You have logged into...; Question 104: Bob needs to know if Alice was configuring the new virtual c...; Question 105: Which is NOT an example of a Check Point API?...; Question 106: Which statements below are CORRECT regarding Threat Preventi...; Question 107: After having saved the Cllsh Configuration with the "save co...; Question 108: The essential means by which state synchronization works to ...; Question 109: What is required for a site-to-site VPN tunnel that does not...; Question 110: Which of the following is true regarding the Proxy ARP featu...; Question 111: You find one of your cluster gateways showing "Down" when yo...; Question 112: What is the purpose of a SmartEvent Correlation Unit?...; Question 113: What are possible Automatic Reactions in SmartEvent?...; Question 114: Which CLI command will reset the IPS pattern matcher statist...; Question 115: Vanessa is a Firewall administrator. She wants to test a bac...; Question 116: Which GUI client is supported in R81?...; Question 117: Fill in the blank RADIUS protocol uses_____to communicate wi...; Question 118: Which of the following is a task of the CPD process?...; Question 119: Full synchronization between cluster members is handled by F...; Question 120: You had setup the VPN Community VPN-Stores'with 3 gateways. ...; Question 121: What is the protocol and port used for Health Check and Stat...; Question 122: IF the first packet of an UDP session is rejected by a rule ...; Question 123: How many images are included with Check Point TE appliance i...; Question 124: Which of the following authentication methods ARE NOT used f...; Question 125: Which one of the following is true about Threat Emulation?...; Question 126: Which of the following is NOT a component of a Distinguished...; Question 127: What destination versions are supported for a Multi-Version ...; Question 128: Alice was asked by Bob to implement the Check Point Mobile A...; Question 129: To fully enable Dynamic Dispatcher on a Security Gateway:...; Question 130: What is the amount of Priority Queues by default?...; Question 131: : 131 Which command is used to display status information fo...; Question 132: Selecting an event displays its configurable properties in t...; Question 133: According to the policy installation flow the transfer state...; Question 134: Your manager asked you to check the status of SecureXL, and ...; Question 135: What is a feature that enables VPN connections to successful...; Question 136: Which firewall daemon is responsible for the FW CLI commands...; Question 137: What Is the difference between Updatable Objects and Dynamic...; Question 138: A user complains that some Internet resources are not availa...; Question 139: Bob has finished io setup provisioning a secondary security ...; Question 140: In the Check Point Security Management Architecture, which c...; Question 141: Which process handles connection from SmartConsole R81?...; Question 142: SmartEvent provides a convenient way to run common command l...; Question 143: To accelerate the rate of connection establishment, SecureXL...; Question 144: What is the purpose of Captive Portal?...; Question 145: How long may verification of one file take for Sandblast Thr...; Question 146: Traffic from source 192.168.1.1 is going to www.google.com. ...; Question 147: Check Point Support in many cases asks you for a configurati...; Question 148: Which command shows the current connections distributed by C...; Question 149: Check Pont Central Deployment Tool (CDT) communicates with t...; Question 150: What is the purpose of extended master key extension/session...; Question 151: Fill in the blanks: A _______ license requires an administra...; Question 152: At what point is the Internal Certificate Authority (ICA) cr...; Question 153: What is the default shell for the command line interface?...; Question 154: Which component is NOT required to communicate with the Web ...; Question 155: Why would an administrator see the message below? (Exhibit)...; Question 156: SandBlast has several functional components that work togeth...; Question 157: Which of the following is NOT a type of Check Point API avai...; Question 158: Which of the following is NOT supported by CPUSE?...; Question 159: If you needed the Multicast MAC address of a cluster, what c...; Question 160: What are types of Check Point APIs available currently as pa...; Question 161: Native Applications require a thin client under which circum...; Question 162: Alice wants to upgrade the current security management machi...; Question 163: How many users can have read/write access in Gaia at one tim...; Question 164: Packet acceleration (SecureXL) identities connections by sev...; Question 165: When simulating a problem on ClusterXL cluster with cphaprob...; Question 166: You can select the file types that are sent for emulation fo...; Question 167: What is the command switch to specify the Gaia API context?...; Question 168: Automatic affinity means that if SecureXL is running, the af...; Question 169: How can SmartView application accessed?...; Question 170: What does the Log "Views" tab show when SmartEvent is Correl...; Question 171: To ensure that VMAC mode is enabled, which CLI command shoul...; Question 172: Which Remote Access Client does not provide an Office-Mode A...; Question 173: Which is NOT an example of a Check Point API?...; Question 174: You want to allow your Mobile Access Users to connect to an ...; Question 175: Which statement is most correct regarding about "CoreXL Dyna...; Question 176: Which tool provides a list of trusted files to the administr...; Question 177: What is the SandBlast Agent designed to do?...; Question 178: What is the purpose of the command "ps aux | grep twd"?...; Question 179: Which Queue in the Priority Queue has the maximum priority?...; Question 180: How would you deploy TE250X Check Point appliance just for e...; Question 181: Which of the following is an authentication method used for ...; Question 182: Check Point recommends configuring Disk Space Management par...; Question 183: What kind of information would you expect to see when using ...; Question 184: What is mandatory for ClusterXL to work properly?...; Question 185: Check Point APIs allow system engineers and developers to ma...; Question 186: Which of the following will NOT affect acceleration?...; Question 187: What will be the effect of running the following command on ...; Question 188: SandBlast agent extends 0 day prevention to what part of the...; Question 189: John detected high load on sync interface. Which is most rec...; Question 190: During the Check Point Stateful Inspection Process, for pack...; Question 191: You plan to automate creating new objects using new R81 Mana...; Question 192: The WebUI offers several methods for downloading hotfixes vi...; Question 193: Which command is used to set the CCP protocol to Multicast?...; Question 194: Which command is used to obtain the configuration lock in Ga...; Question 195: What could NOT be a reason for synchronization issues in a M...; Question 196: DLP and Geo Policy are examples of what type of Policy?...; Question 197: What are the modes of SandBlast Threat Emulation deployment?...; Question 198: You can access the ThreatCloud Repository from:...; Question 199: What processes does CPM control?...; Question 200: To find records in the logs that shows log records from the ...; Question 201: In CoreXL, the Firewall kernel is replicated multiple times....; Question 202: Which of the following links will take you to the SmartView ...; Question 203: When synchronizing clusters, which of the following statemen...; Question 204: You are asked to check the status of several user-mode proce...; Question 205: The admin is connected via ssh lo the management server. He ...; Question 206: Access roles allow the firewall administrator to configure n...; Question 207: The installation of a package via SmartConsole CANNOT be app...; Question 208: After making modifications to the $CVPNDIR/conf/cvpnd.C file...; Question 209: What is a possible command to delete all of the SSH connecti...; Question 210: What is UserCheck?; Question 211: What command would show the API server status?...; Question 212: SandBlast agent extends 0-day prevention to what part of the...; Question 213: What is the best method to upgrade a Security Management Ser...; Question 214: You have existing dbedit scripts from R77. Can you use them ...; Question 215: What are the steps to configure the HTTPS Inspection Policy?...; Question 216: What are the different command sources that allow you to com...; Question 217: When an encrypted packet is decrypted, where does this happe...; Question 218: Which option, when applied to a rule, allows traffic to VPN ...; Question 219: Which Check Point software blade provides protection from ze...; Question 220: You need to change the number of firewall Instances used by ...; Question 221: What is the benefit of Manual NAT over Automatic NAT?...; Question 222: What is the command used to activated Multi-Version Cluster ...; Question 223: Vanessa is expecting a very important Security Report. The D...; Question 224: What API command below creates a new host with the name "New...; Question 225: From SecureXL perspective, what are the three paths of traff...; Question 226: Which of the following is NOT an internal/native Check Point...; Question 227: With MTA (Mail Transfer Agent) enabled the gateways manages ...; Question 228: The Firewall Administrator is required to create 100 new hos...; Question 229: After the initial installation on Check Point appliance, you...; Question 230: You have used the SmartEvent GUI to create a custom Event po...; Question 231: In which VPN community is a satellite VPN gateway not allowe...; Question 232: Which features are only supported with R81.20 Gateways but n...; Question 233: Which one of the following is true about Threat Extraction?...; Question 234: Identify the API that is not supported by Check Point curren...; Question 235: As a valid Mobile Access Method, what feature provides Capsu...; Question 236: Which of the following statements about SecureXL NAT Templat...; Question 237: In order for changes made to policy to be enforced by a Secu...; Question 238: Which of the following is a new R81 Gateway feature that had...; Question 239: What object type would you use to grant network access to an...; Question 240: Which VPN routing option uses VPN routing for every connecti...; Question 241: What are the available options for downloading Check Point h...; Question 242: What API command below creates a new host object with the na...; Question 243: What is NOT a Cluster Mode?; Question 244: When gathering information about a gateway using CPINFO, wha...; Question 245: Due to high CPU workload on the Security Gateway, the securi...; Question 246: The system administrator of a company is trying to find out ...; Question 247: Which application should you use to install a contract file?...; Question 248: View the rule below. What does the lock-symbol in the left c...; Question 249: Why is a Central License the preferred and recommended metho...; Question 250: Due to high CPU workload on the Security Gateway, the securi...; Question 251: True or False: In R81, more than one administrator can login...; Question 252: SecureXL is able to accelerate the Connection Rate using tem...; Question 253: What can we infer about the recent changes made to the Rule ...; Question 254: Check Point Management (cpm) is the main management process ...; Question 255: Which feature is NOT provided by all Check Point Mobile Acce...; Question 256: What key is used to save the current CPView page in a filena...; Question 257: What are the blades of Threat Prevention?...; Question 258: What is the main objective when using Application Control?...; Question 259: Which TCP port does the CPM process listen on?...; Question 260: Customer's R81 management server needs to be upgraded to R81...; Question 261:; Question 262: What is required for a certificate-based VPN tunnel between ...; Question 263: Which command shows the current Security Gateway Firewall ch...; Question 264: Choose the correct syntax to add a new host named "emailserv...; Question 265: What is the port used for SmartConsole to connect to the Sec...; Question 266: From SecureXL perspective, what are the tree paths of traffi...; Question 267: What SmartEvent component creates events?...; Question 268: When attempting to start a VPN tunnel, in the logs the error...; Question 269: What are scenarios supported by the Central Deployment in Sm...; Question 270: The Check Point installation history feature in provides the...; Question 271: When requiring certificates for mobile devices, make sure th...; Question 272: Which file contains the host address to be published, the MA...; Question 273: What is false regarding prerequisites for the Central Deploy...; Question 274: Automation and Orchestration differ in that:...; Question 275: Which of the following commands shows the status of processe...; Question 276: NO: 219 What cloud-based SandBlast Mobile application is use...; Question 277: How do Capsule Connect and Capsule Workspace differ?...; Question 278: By default, which port does the WebUI listen on?...; Question 279: Which Check Point feature enables application scanning and t...; Question 280: The CPD daemon is a Firewall Kernel Process that does NOT do...; Question 281: Which command collects diagnostic data for analyzing custome...; Question 282: When configuring SmartEvent Initial settings, you must speci...; Question 283: While using the Gaia CLI. what is the correct command to pub...; Question 284: Identity Awareness allows easy configuration for network acc...; Question 285: What information is NOT collected from a Security Gateway in...; Question 286: Which process handles connection from SmartConsole R81?...; Question 287: For Management High Availability, which of the following is ...; Question 288: What are the two types of tests when using the Compliance bl...; Question 289: Fill in the blanks: Default port numbers for an LDAP server ...; Question 290: In order to get info about assignment (FW, SND) of all CPUs ...; Question 291: What is the base level encryption key used by Capsule Docs?...; Question 292: The back-end database for Check Point Management uses:...; Question 293: You want to verify if your management server is ready to upg...; Question 294: Which command collects diagnostic data for analyzing a custo...; Question 295: Firewall polices must be configured to accept VRRP packets o...; Question 296: Mobile Access Gateway can be configured as a reverse proxy f...; Question 297: Fill in the blank: The "fw monitor" tool can be best used to...; Question 298: CPM process stores objects, policies, users, administrators,...; Question 299: Which command gives us a perspective of the number of kernel...; Question 300: Which blades and or features are not supported in R81?...; Question 301: Which Identity Source(s) should be selected in Identity Awar...; Question 302: Fill in the blank: With the User Directory Software Blade, y...; Question 303: Advanced Security Checkups can be easily conducted within:...; Question 304: To enable Dynamic Dispatch on Security Gateway without the F...; Question 305: How can you see historical data with cpview?...; Question 306: What must you do first if "fwm sic_reset" could not be compl...; Question 307: Fill in the blank: An identity server uses a _______________...

Question 150/307

LEAVE A REPLY

Download PDF File