Winter Sale- Special Discount Limited Time 65% Offer - Ends in 0d 00h 00m 00s - Coupon code: netdisc

Checkpoint 156-836 Check Point Certified Maestro Expert (CCME) R81.X Exam Practice Test

Page: 1 / 8
Total 75 questions

Check Point Certified Maestro Expert (CCME) R81.X Questions and Answers

Question 1

For the MHO-175, which ports are Management ports?

Options:

A.

Ports 49 - 55 are Management ports.

B.

Ports 1 - 4 are Management ports.

C.

Ports 27 - 47 are Management ports.

D.

Ports 5 - 26 are Management ports.

Question 2

Maestro allows running commands globally in Expert mode by using global prefixes, such as:

Options:

A.

asg all

B.

g_all

C.

all

D.

global

Question 3

Possibilities for a failure in a single SGM of a Security Group include.

Options:

A.

A change was made with clish instead of gClish, causing the SGM to handle traffic differently than the other SGMs.

B.

SecureXL is not enabled on the SGM.

C.

An administrator imported a hotfix into the CPUSE repository of a single SGM.

D.

There are too many active SGMs in the SG.

Question 4

What is the Correction Layer?

Options:

A.

Correction Layer is a daemon which corrects errors on Backplane interfaces

B.

Correction Layer is a mechanism which handles asymmetric connections in multi-appliance system. For example, in case of NAT

C.

Correction Layer is a mechanism which activated in case of asymmetric routing

D.

Correction Layer is a Layer of GAIA OS which corrects misspelled commands and allows them to execute

Question 5

What is the Correction Layer mechanism?

Options:

A.

Ensures asymmetric traffic is handled properly, especially in the case of NAT or VPNs.

B.

The load-balancing mechanism used by the MHO.

C.

The MHO's distribution algorithm which determines the handling SGM for a given connection.

D.

Enforces the access policy on the SGMs and synchronizes the enforcement verdict to other SGMs in the SG.

Question 6

At a minimum, how many management and Uplink ports does a SG require?

Options:

A.

Only one of the two interfaces is needed for the Security Group.

B.

Neither are required.

C.

Two of each.

D.

One each.

Question 7

There are two 10Gbps dual-port NICs and one 40Gbps NIC installed on a 23800 Appliance in slots 1, 2 and 3 accordingly. Which interfaces should be connected to Orchestrator 1 for downlinks' intra-

orchestrator redundancy when using two Orchestrators?

Options:

A.

Port 1 in Slot 2 and Port 2 in Slot 1

B.

This configuration is not supported

C.

Any pair of available ports

D.

Port 1 in Slot 1 and Port 2 in Slot 1

Question 8

How does HyperSync work in a Dual Site environment?

Options:

A.

Each active connection has two local backups (on the local site) and a third backup connection on the second site (remote site.)

B.

Each active connection has a backup connection on the second site (remote site.)

C.

Each active connection has a local backup (on the local site) and a second backup connection on the second site (remote site.)

D.

Each active connection has a local backup (on the local site) and a second backup connection on each of the MHOs.

Question 9

How many orchestrators may Dual-Site include?

Options:

A.

2 or 4

B.

2

C.

1

D.

Only 4

Question 10

What does the lldpctl command do?

Options:

A.

Show all devices discovered by LLDP protocol on downlink ports

B.

Show all devices discovered by LLDP protocol on all ports

C.

Discover orchestrators

D.

Show all devices discovered by LLDP protocol on uplink ports

Question 11

What is an uplink interface used for?

Options:

A.

To connect in between appliances

B.

To connect appliances to customer's infrastructure

C.

To connect Orchestrators to customer's infrastructure

D.

To connect in between Orchestrators

Question 12

What kinds of transceivers are supported on Orchestrator MHO-140?

Options:

A.

SFP, QSFP, QSFP28

B.

SFP+, SFP28, QSFP

C.

SFP, SFP+, SFP28

D.

SFP, SFP+, QSFP, QSFP28

Question 13

What is the maximum number of Appliances within Security group in Dual-Site configuration?

Options:

A.

28

B.

31

C.

15

D.

16

Question 14

What cannot be learned from the output of asg monitor command?

Options:

A.

Uptime

B.

Port status

C.

Security Policy status

D.

Appliances cluster status

Question 15

There are two 10Gbps dual-port NICs and one 40Gbps NIC installed on a 23800 Appliance in slots 1, 2 and 3 accordingly. Which interfaces should be connected to Orchestrator 1 for downlinks' intra-

orchestrator redundancy when using two Orchestrators?

Options:

A.

Port 1 in Slot 2 and Port 2 in Slot 1

B.

This configuration is not supported

C.

Any pair of available ports

D.

Port 1 in Slot 1 and Port 2 in Slot 1

Question 16

During an upgrade, Is Multi-Version Clustering (MVC) supported?

Options:

A.

No. Maestro does not support MVC because ClusterXL is disabled during an upgrade.

B.

No, Maestro does not support MVC.

C.

Maestro supports MVC or full connectivity upgrade as of R80.40.

D.

Yes, MVC is supported as of R81 for Maestro.

Question 17

What is the command 'asg diag' used for?

Options:

A.

Asg diag used for system diagnostics on Chassis only. It does not exist on Maestro

B.

Asg diag is used for system backup

C.

Asg diag is used for system diagnostics

D.

Asg diag is used for creating traffic flow diagrams

Question 18

There are two 10Gbps dual-port NIC installed on a 6800 appliance. Which interfaces should be connected to Orchestrator 1 for downlinks' intra-orchestrator redundancy when using two Orchestrators?

Options:

A.

Any pair of available ports

B.

Port 1 in Slot 1 and Port 1 in Slot 2

C.

Port 1 in Slot 1 and Port 2 in Slot 1

D.

Port 1 in Slot 2 and Port 2 in Slot 1

Question 19

What does the lldpctl command do?

Options:

A.

Show all devices discovered by LLDP protocol on downlink ports

B.

Show all devices discovered by LLDP protocol on all ports

C.

Discover orchestrators

D.

Show all devices discovered by LLDP protocol on uplink ports

Question 20

Which licenses should be issued for the Orchestrator?

Options:

A.

No licenses are required for Orchestrator

B.

Depends on Software Blades enabled on connected appliances

C.

The Orchestrator is considered a Management server, hence it's licensed the same way

D.

The Orchestrator requires NGTX license

Question 21

What is the purpose of RJ-45 connectors located at the front panel of the Orchestrator MHO-170?

Options:

A.

Two Out-of-band interfaces for access to Orchestrator itself

B.

1Gbps connectivity for Security Groups

C.

Out-of-band interface for access to Orchestrator itself and Serial Console connector

D.

Reserved for internal purposes. Not in use

Question 22

In case of Correction, where is information about Owner stored?

Options:

A.

In Correction table of Target Appliance

B.

In Connection tables of all Appliances participating in Correction Layer flow

C.

In Correction tables of all Appliances participating in Correction Layer flow

D.

In Connection table of Target Appliances

Page: 1 / 8
Total 75 questions