1149 お客様のコメント
質問 1:
Consider an IKE debug file that has been generated when debugging an issue with site to site VPN. What is the purpose of a NONCE?
A. Fixed hex value of Phase 2 keys with PFS
B. Randomly generated part of key generation
C. Protocol 50 and 51 representations
D. Vendor ID and Remote Gateway ID
正解:B
質問 2:
Which of the following inputs is suitable for debugging HTTPS inspection issues?
A. fw debug tls on TDERROR_ALL_ALL=5
B. fw diag debug tls enable
C. fw ctl debug -m fw + conn drop cptls
D. vpn debug cptls on
正解:C
質問 3:
What is the default and maximum number of entries in the ARP Cache Table in a Check Point appliance?
A. 4,096 and 65,536
B. 4,096 and 16,384
C. 1,024 and 4,096
D. 1,024 and 16,384
正解:D
質問 4:
Of how many packets consists Main Mode in Phase 1?
A. Four packets
B. Six packets
C. Three packets
D. it depends on the encryption algorithm used. 3DES has three times more packets than DES encryption
正解:B
質問 5:
What is the difference between disabling SecureXL by running "fwaccel off" and disabling it via cpconfig?
A. "fwaccel off" will survive the reboot but cpconfig will not
B. Disabling SecureXL in cpconfig survives reboot
C. There is no difference. These are two different ways of accomplishing the same task
D. cpconfig option is available only on the security manager
正解:B
Consider an IKE debug file that has been generated when debugging an issue with site to site VPN. What is the purpose of a NONCE?
A. Fixed hex value of Phase 2 keys with PFS
B. Randomly generated part of key generation
C. Protocol 50 and 51 representations
D. Vendor ID and Remote Gateway ID
正解:B
質問 2:
Which of the following inputs is suitable for debugging HTTPS inspection issues?
A. fw debug tls on TDERROR_ALL_ALL=5
B. fw diag debug tls enable
C. fw ctl debug -m fw + conn drop cptls
D. vpn debug cptls on
正解:C
質問 3:
What is the default and maximum number of entries in the ARP Cache Table in a Check Point appliance?
A. 4,096 and 65,536
B. 4,096 and 16,384
C. 1,024 and 4,096
D. 1,024 and 16,384
正解:D
質問 4:
Of how many packets consists Main Mode in Phase 1?
A. Four packets
B. Six packets
C. Three packets
D. it depends on the encryption algorithm used. 3DES has three times more packets than DES encryption
正解:B
質問 5:
What is the difference between disabling SecureXL by running "fwaccel off" and disabling it via cpconfig?
A. "fwaccel off" will survive the reboot but cpconfig will not
B. Disabling SecureXL in cpconfig survives reboot
C. There is no difference. These are two different ways of accomplishing the same task
D. cpconfig option is available only on the security manager
正解:B
山田** -
これからの時代に対応するために必須な試験です。詳細に、156-115.80出題がされているので非常に役に立っています。