You suspect that IPS protections may be dropping legitimate traffic by mistake. To reduce the false positives, what GuiDBedit parameter could you enable to work with fw ctl zdebug drop to generate a more elaborate drop message for these packets?
A. enable_inspect_debug_ips
B. enable_inspect_debug_ips_compilation
C. inspect_ips_debug_inspection
D. enable_inspect_debug_compilation
正解:D
質問 2:
Which daemon would you debug if you have issues acquiring identities via identity sharing and identities with other gateways?
A. iad
B. pdpd
C. wstlsd
D. pepd
正解:B
質問 3:
Where does the translation occur with Hide NAT?
A. The destination translation occurs at the server side
B. The destination translation occurs at the client side
C. The source translation occurs at the client side
D. The source translation occurs at the server side
正解:D
質問 4:
What is the name of the table that an administrator would review to investigate a port exhaustion error when using Hide NAT?
A. connection
B. nat_dyn_table
C. fwx_alloc
D. dyn_nat_table
正解:C
質問 5:
During firewall kernel debug with fw ctl zdebug you received less information than expected. You noticed that a lot of messages were lost since the time the debug was started. What should you do to resolve this issue?
A. Redirect debug output to file; Use fw ctl debug -o ./debug.elg
B. Redirect debug output to file; Use fw ctl zdebug -o ./debug.elg
C. Increase debug buffer; Use fw ctl zdebug -buf 32768
D. Increase debug buffer; Use fw ctl debug -buf 32768
正解:D
質問 6:
Where will the usermode core files located?
A. $FWDIR/var/log/dump/usermode
B. /var/suroot
C. /var/log/dump/usermode
D. $CPDIR/var/log/dump/usermode
正解:C
質問 7:
What are some measures you can take to prevent IPS false positives?
A. Exclude problematic services from being protected by IPS (sip, H.323, etc.)
B. Use IPS only in Detect mode
C. Use Recommended IPS profile
D. Capture packets, Update the IPS database, and Back up custom IPS files
正解:A
質問 8:
You have users complain that they have no Internet access. Additionally, you have different Policy Layers configured to control Network Access, Web Filtering and Content. From the SmartLog you notice drop logs with the reason CPEarlyDrop. What is the main cause of this?
A. Due to rulebase optimization, the connection is being blocked
B. Ordered layers rulebase must contain a clean-up rule similar to main Access layer to avoid implicit drop and optimize the rulebase
C. This is the new implicit block in R80 gateways because there is no clean-up rule in at least one of the policy layers
D. In-Line layers with a clean-up rule must be used to optimize the rulebase
正解:A
905 お客様のコメント





斉*枫 -
156-115.80試験に2つの新しい問題があったけど、他の問題で試験に合格できます。156-115.80試験問題集に感謝します。