CCSA

Question 1

What are the three main components in Check Point Security Architecture?

Answer 1

• SmartConsole - GUI for connection to the mgmt section of the security mgmt servers
• Security Management Server - Manages Security Gateways with defined security policies and monitors security events on the network.
• Security Gateways - Which serve as entry points and cyber barriers to traffic.

Question 2

What can the SmartConsole interface provide for necessarey monitoring and and configurations?

4 main areas

Answer 2

• Security Policy Management
• Log Analysis
• System Health Monitoring
• Multi-Domain Security Management

Question 3

What are the 7 layers of the OSI model?

Answer 3

Application - 7
Presentation - 6
Session - 5
Transportation - 4
Network - 3
Data Link - 2
Physical - 1

Question 4

What are the 4 layers of the TCP/IP model?

Answer 4

Application - 4
Transport - 3
Internet - 2
Network interface - 1

Question 5

Which three technologies are used to deny or permit network traffic?

Answer 5

• Packet Filtering
• Stateful Inspection
• Application Layer Firewall

Question 6

Which of the following is NOT an integral part of VPN communication within a network?

A. VPN key
B. VPN community
C. VPN trust entities
D. VPN domain

Answer 6

A

Question 7

Why are “State Tables” a key component in the Stateful Inspeciton?

Answer 7

They maintain the information needed to correctly inspect packetss.

Question 8

What is the purpose of security gateways?

Answer 8

It prevents unathourized traffic from entering the companys network

Question 9

Name 5 Check Point appliances

Answer 9

• Small business and branch office appliances
• Enterprise network security appliances
• Data center security systems
• Chassis systems
• Rugged Appliances

Question 10

True or False
Licensing can be transferred between old and new hardware.

Answer 10

True

Hardware must be supported by Check Point

Question 11

What are the three deployment options?

Answer 11

• Standalone
• Distributed
• Bridge mode

Question 12

Explain “Standalone Deployment”

Answer 12

In a standalone deployment, the Security Management Server and Security Gateway are installed on the same computer or appliance.

Question 13

Explain “Distributed Deployment”

Answer 13

In a distributed deployment, the Security Gateway and Security Management Server are installed on different computers or appliances.

Question 14

Explain “Bridge Mode Deployment”

Answer 14

A bridge mode deployment adds a Security Gateway to an existing enviroment without changing IP routing.

Question 15

What is Gaia?

Answer 15

Check Point’s operating system

Question 16

Name the two main shells for Check Point’s CLI

Answer 16

Clish and Expert

Question 17

What are the two default users in Gaia?

Answer 17

admin and monitor

Question 18

What are two main hardware options for deploying Check Point technology?

Answer 18

Check Point Appliance and Open Server

Question 19

What is a private package?

Answer 19

It’s a Hotfix, which is located on the Check Point Support Center, and is only available to limited audiences.

Question 20

What is Secure Internal Communication (SIC)

Answer 20

SIC is a certificate-based channel for communications between modules (CP components).

Question 21

What are the three status that SIC can display?

Answer 21

• Communicating - Secure communication is established
• Unknown - Gateway and Management Server have no connection
• Not Communicating - Management Server can contact the Gateway but cannot establish SIC

Question 22

What is SmartConsole used for?

Answer 22

It’s a GUI that manage:
* Network Elements
* Servers
* Security Gateways

Question 23

What does SmartEvent do?

Answer 23

Correlates logs and detects real security threats

Question 24

What is the SmartConsole application called that displays a complete picture of network and security performance, letting you monitor changes to Gateways (FW), tunnels, remote users, and security activities?

Answer 24

SmartView Monitor

Question 25

When is a session created in SmartConsole?

Answer 25

Each time an administrator logs in

Changes are saved automatically

Question 26

What is a required action that an administrator have to do for making changes available to all administrators and user?

Answer 26

The administrator have to publish the session.

Question 27

Name one task that takes place on the Gateway & Servers tab.

Answer 27

• Manage Security Gateways
• Configure Gateway Blade Activation
• View Gateway Status

One of these^

Question 28

Name the 2 components that the Check Point License consists of

Answer 28

• Software Blade
• Software Container

Question 29

What does the Software Blade enable?

Answer 29

Specific features or functionalities

Each software blad must be attached to a Software Container

Question 30

What does the Software container do?

Answer 30

It houses the Software Blades

Question 31

Name the three types of Software Containers

Answer 31

• Security Management
• Security Gateway
• Endpoint Security

Question 32

How long is a Plug-and-Play license valid?

Answer 32

15 days

Question 33

What’s the difference between the two different license forms Central and Local?

Answer 33

• Central ties the package license to the IP address och the Management Server and has no dependency on Gateway IP
• Local license is tied to the IP address of a specific Security Gateway, it cannot be transferred to a Gateway with a different IP

Question 34

What are the three features of automatic licensing?

Answer 34

• Checks periodically to verify licenses
• Activates new licenses added to the repository
• Automatically adds new blades to SmartConsole