156-915.65 Online Practice Questions and Answers

What physical machine must have access to the User Center public IP when checking for new packages with SmartUpdate?

A. SmartUpdate installed SmartCenter Server PC

B. SmartUpdate GUI PC

C. VPN.1 Security Gateway getting the new upgrade package

D. SmartUpdate Repository SQL database Server

A marketing firm's networking team is trying to troubleshoot user complaints regarding access to audio-streaming material from the Internet. The networking team asks you to check the object and rule configuration settings for the perimeter Security Gateway. Which SmartConsole application should you use to check these objects and rules?

A. SmartViewTracker

B. SmartView Status

C. SmartView Monitor

D. SmartDashboard

Your primary SmartCenter Server is installed on a SecurePlatform Pro machine, which is also a VPN-1 Power Gateway. You want to implement Management High Availability (HA). You have a spare machine to configure as the secondary SmartCenter Server. How do you configure the new machine to be the standby SmartCenter Server?

A. Use cpprod_util to reconfigure the primary SmartCenter Server to become the secondary on the VPN-1 Power Gateway. Install a new primary SmartCenter Server on the spare machine and set to "standby". Synchronize the "active" secondary to the "standby" primary in order to migrate the configuration.

B. Install the secondary Server on the spare machine. Add the new machine to any network routable to the primary Server. Synchronize the machines.

C. You cannot configure Management HA, when either the primary or secondary SmartCenter Server is running on a VPN-1 Pro Gateway.

D. Install the secondary Server on the spare machine. Add the new machine to the same network as the primary Server. Synchronize the machines.

In ClusterXL, which of the following processes are defined by default as critical devices?

A. assld

B. fwd

C. fwm

D. cpp

You are working in a large hospital, together with three other Security Administrators. How do you use SmartConsole to check changes to rules or object properties other administrators made?

A. Eventia Monitor

B. SmartView Monitor

C. Eventia Tracker

D. SmartView Tracker

Match the ClusterXL Modes with their configurations

A. A2.B3.C4.D 1

B. A2.B3.C 1.D4

C. A3,B2,C4,D 1

D. A3.B2.C 1.D4

What is a Consolidation Policy?

A. A global Policy used to share a common enforcement policy for multiple similar Security Gateways

B. The collective name of the logs generated by Eventia Reporter

C. The collective name of the Security Policy, Address Translation, and SmartDefense Policies

D. The specific Policy written in SmartDashboard to configure which log data is stored in the Eventia Reporter database

What information is found in the SmartView Tracker audit log?

A. SIC revoke certificate event

B. Number of concurrent IKE negotiations

C. Destination IP address

D. Most accessed Rule Base rule

Which of the following is NOT supported with Office Mode?

A. SSL Network Extender

B. L2TP

C. SecureClient

D. Transparent Mode

Your network includes a SecurePlatform machine running NG with Application Intelligence (Al) R55. This configuration acts as both the primary SmartCent Server and VPN-1 Pro Gateway. You add one machine, so you can implement VPN-1 NGX R65 in a distributed environment. The new machine is an Intel CoreDuo processor, with 2 GB RAM and a 500- GB hard drive. How do you use these two machines to successfully migrate the NG with Al R55 configuration?

A. 1. On the existing machine, export the NG with Al R55 configuration to a network share.

2. Insert the NGXR65 CD-ROM in the old machine. Install the NGXR65 Security Gateway only while

reinstalling the SecurePlatform OS over the to of the existing installation.

Complete sysconfig.

4.On the new machine, install SecurePlatform as the primary SmartCenter Server only.

5.Transfer the exported .tgzfile into the new machine, import the configuration, and then reboot.

6.Open SmartDashboard, change the Gateway object to the new version, and reset SIC for the

Gateway object.

B. 1. Export the configuration on the existing machine to a network share. 2.Uninstall the Security Gateway from the existing machine, using sysconfig. 3.Insert the NGX R65 CD-ROM, and run the patch add cd command to upgrade the SmartCenter Server to VPN-1 NGX R65. 4.Select "upgrade with imported file", and reboot. 5.Install a new NGX R65 Security Gateway as the only module on the new machine, and reset SIC to the new Gateway.

C. 1. Export the configuration on the existing machine to a tape drive. 2.Uninstall the SmartCenter Server from the existing machine, using sysconfig. 3.Insert the NGX R65 CD-ROM, run the patch add cd command to upgrade the existing machine to the NGX R65 Security Gateway, and reboot. 4.Install a new primary SmartCenter Server on the new machine. 5.Change the gateway object to the new version, and reset SIC.

D. 1. Export the configuration on the existing machine as a backup only. 2.Edit $FWDIR\product.conf on the existing machine, to disable the Pro gateway package. 3.Reboot the existing machine. 4.Perform an in-place-upgrade on the SmartCenter using the command "patch add cd". 5.On the new machine, install SecurePlatform as the NGX R65 Security Gateway only. 6.Run sysconfig to complete the configuration. 7.From SmartDashboard, reconfigure the Gateway object to the new version, and reset SIC. Your company enforces a strict change control policy, which of the following would be best to quickly drop an attacker's specific active connection?

E. Change the Rule Base and install the policy to all security gateways

F. SAM Block Intruder feature of SmartView Tracker

G. Intrusion Detection System (IDS) policy install

H. SAM Suspicious Activity Rules feature of SmartView Monitor