You are the Security Administrator for ABC-Corp. A Check Point Firewall is installed and in use on GAiA. You are concerned that the system might not be retaining your entries for the interfaces and routing configuration. You would like to verify your entries in the corresponding file(s) on GAiA. Where can you view them? Give the BEST answer.

A. /etc/sysconfig/netconf.C

B. /etc/conf/route.C

C. /etc/sysconfig/network-scripts/ifcfg-ethx

D. /etc/sysconfig/network

Which of the following commands can provide the most complete restoration of a R77 configuration?

A. upgrade_import

B. cpinfo -recover

C. cpconfig

D. fwm dbimport -p

Which of the following is a CLI command for Security Gateway R77?

A. fw tab -u

B. fw shutdown

C. fw merge

D. fwm policy_print

A host on the Internet initiates traffic to the Static NAT IP of your Web server behind the Security Gateway. With the default settings in place for NAT, the initiating packet will translate the _________.

A. destination on server side

B. source on server side

C. source on client side

D. destination on client side

John Adams is an HR partner in the ACME organization. ACME IT wants to limit access to HR servers to designated IP addresses to minimize malware infection and unauthorized access risks. Thus, the gateway policy permits access only from John's desktop which is assigned a static IP address 10.0.0.19.

John received a laptop and wants to access the HR Web Server from anywhere in the organization. The IT department gave the laptop a static IP address, but that limits him to operating it only from his desk. The current Rule Base contains a rule that lets John Adams access the HR Web Server from his laptop with a static IP (10.0.0.19). He wants to move around the organization and continue to have access to the HR Web Server.

To make this scenario work, the IT administrator:

1) Enables Identity Awareness on a gateway, selects AD Query as one of the Identity Sources installs the policy.

2) Adds an access role object to the Firewall Rule Base that lets John Adams PC access the HR Web Server from any machine and from any location.

What should John do when he cannot access the web server from a different personal computer?

A. John should lock and unlock his computer

B. Investigate this as a network connectivity issue

C. The access should be changed to authenticate the user instead of the PC

D. John should install the Identity Awareness Agent

The Identity Agent is a lightweight endpoint agent that authenticates securely with Single Sign-On (SSO). What is not a recommended usage of this method?

A. When accuracy in detecting identity is crucial

B. Leveraging identity for Data Center protection

C. Protecting highly sensitive servers

D. Identity based enforcement for non-AD users (non-Windows and guest users)

To qualify as an Identity Awareness enabled rule, which column MAY include an Access Role?

A. Action

B. Source

C. User

D. Track

MultiCorp has bought company OmniCorp and now has two active AD domains. How would you deploy Identity Awareness in this environment?

A. You must run an ADquery for every domain.

B. Identity Awareness can only manage one AD domain.

C. Only one ADquery is necessary to ask for all domains.

D. Only Captive Portal can be used.

Which of the following is the preferred method for adding static routes in GAiA?

A. In the CLI with the command "route add"

B. In Web Portal, under Network Management > IPv4 Static Routes

C. In the CLI via sysconfig

D. In SmartDashboard under Gateway Properties > Topology

A snapshot delivers a complete backup of Secure Platform. The resulting file can be stored on servers or as a local file in /var/CP snapshot/snapshots. How do you restore a local snapshot named MySnapshot.tgz?

A. As Expert user, type command snapshot - R to restore from a local file. Then, provide the correct file name.

B. As Expert user, type command revert --file MySnapshot.tgz.

C. As Expert user, type command snapshot -r MySnapshot.tgz.

D. Reboot the system and call the start menu. Select option Snapshot Management, provide the Expert password and select [L] for a restore from a local file. Then, provide the correct file name.