156-727.77 Online Practice Questions and Answers

Can the Anti-Bot software blade be enabled on a Secure Web Gateway as well?

A. Yes, this is an optional blade for the Secure Web Gateway.

B. No, Anti-Bot needs to be part of the Threat Prevention Appliance.

C. Yes, it can be enabled if IPS is enabled as well.

D. Yes, Anti-Bot is always enabled together with Identity Awareness.

Sensitive corporate data is uploaded to ThreatCloud:

A. When the administrator manually sends suspected traffic to ThreatCloud for inspection.

B. Never

C. When the administrator configures the sensor to be a SensorNET participant.

D. After the bot attack has been confirmed.

When adding IPS to a gateway, which profile will be set?

A. Default_Protection, but with all actions set to "Detect only"

B. Default_Protection, but with all actions set to "Prevent"

C. Default_Protection

D. Recommended_Protection

IPS can assist in the discovery of unknown buffer overflow attacks without any pre-defined signatures.

A. False, only the Threat Emulator blade can discover unknown attacks.

B. True, if Zero-Day vulnerability is enabled.

C. False, IPS needs predefined signatures for all functions.

D. True, if Malicious Code Protector is enabled in IPS.

In SmartViewTracker, you see a log record of type "control" and severity "critical" for the product "Threat

Emulation" which says:

"cloud emulation failed. Reason: failed to authenticate gateway..."

What is likely to be the reason for this failure?

A. The user provided the wrong credentials to the gateway

B. The gateway should be configured in a way that Threat Emulation can be done locally in case the cloud is not accessible

C. The cloud is not accessible right now

D. Verify the gateway license / contract

Put these HTTPS traffic inspections steps in the correct order.

a.

Validates the web site's server certificate

b.

Intercepts HTTPS requests

c.

Decrypts data from client and inspects clear text content

d.

Decrypts response from server and inspects clear text content

e.

Creates a certificate for use between gateway and client

f.

Encrypts data and sends data to web server

g.

Encrypts data and sends data to client

h.

Establishes a secure connection to the requested web site

A.

a, e, b, h, c, f, d, g

B.

a, b, f, d, c, g, h, e

C.

b, h, a, e, c, f, d, g

D.

a, b, e, f, d, c, g, h

When the feature ______________ is ON, the Gateway does not block DNS requests that were identified as malicious. Instead it sends a false response with a bogus IP address to the client.

A. Malware DNS Blacklist

B. Malware DNS Trap

C. Malware DNS Sinkhole

D. Malware DNS Blackhole

Bots and viruses appear as __________ in the reporting blade.

A. Threats

B. Incidents

C. Malware

D. Infections

A customer does not own Check Point Gateways, but he wants to use Threat Emulation Service to detect SMTP Zero-Day vulnerabilities. What is his option?

A. Needs to buy a Check Point security gateway.

B. Purchase TE cloud service.

C. Use SMTP plug-in on his exchange server.

D. Needs to install Mail Transfer Agent on his firewall.

A customer does not own Check Point Gateways, but he wants to use Threat Emulation Service to detect SMTP Zero-Day vulnerabilities. What is his option?

A. Use MTA plug-in on his exchange server.

B. Needs to buy a Check Point security gateway.

C. Needs to install Mail Transfer Agent on his firewall.

D. Purchase SMTE cloud service.