Hi!
i have several questions that i have problem with regarding the ccsa exam:
what is the difference when the system display status displays a firewall with "!".
between when the system status displays a computer icon with a ‘!’ symbol in the
status column?
--
When you make a rule, the rule is not enforces as part of your Security Policy.
A. True
B. False
Answer: B
Explanation: by default, any rule that you add to your rulebase for certain policy is
enforced automatically once you push the updated policy to the enforcement
modules from the management station.
why False??? you need to install policy. until then... the rule is not enforced.
--
When configuring Static NAT, you cannot map the routable IP address to the
external IP address of
the Firewall if attempted, the security policy installation fails with the following
error “rule X conflicts
with rule Y”.
A. True
B. False
Answer: A
Explanation: when you map a routable address with an external one, you will get
the message "rule x
conflicts with rule y" this is because of the behavior of the Checkpoint firewall
suite in relation with the
limitations of Static NAT, this behavior will make your policy verification and
installation fail.
can someone explain the question please ?!?!
--
The advantage of client authentication is that it can be used for any number of
connections and for
any services, but authentication is only valid for a specified length of time.
A. True
B. False
Answer: B
Explanation: yes, you can use client authentication for any service and the
authentication in only valid for a
specific length of time, but you can't use it for any number of connection, this
number is limited and can be
configured.
the official book say that it CAN be used for any number of connections.
who is right ??!!
--
when you hide your internal address behind 0.0.0.0 what does it mean 0.0.0.0?
--
i hope you could help with that.
thanks
i have several questions that i have problem with regarding the ccsa exam:
what is the difference when the system display status displays a firewall with "!".
between when the system status displays a computer icon with a ‘!’ symbol in the
status column?
--
When you make a rule, the rule is not enforces as part of your Security Policy.
A. True
B. False
Answer: B
Explanation: by default, any rule that you add to your rulebase for certain policy is
enforced automatically once you push the updated policy to the enforcement
modules from the management station.
why False??? you need to install policy. until then... the rule is not enforced.
--
When configuring Static NAT, you cannot map the routable IP address to the
external IP address of
the Firewall if attempted, the security policy installation fails with the following
error “rule X conflicts
with rule Y”.
A. True
B. False
Answer: A
Explanation: when you map a routable address with an external one, you will get
the message "rule x
conflicts with rule y" this is because of the behavior of the Checkpoint firewall
suite in relation with the
limitations of Static NAT, this behavior will make your policy verification and
installation fail.
can someone explain the question please ?!?!
--
The advantage of client authentication is that it can be used for any number of
connections and for
any services, but authentication is only valid for a specified length of time.
A. True
B. False
Answer: B
Explanation: yes, you can use client authentication for any service and the
authentication in only valid for a
specific length of time, but you can't use it for any number of connection, this
number is limited and can be
configured.
the official book say that it CAN be used for any number of connections.
who is right ??!!
--
when you hide your internal address behind 0.0.0.0 what does it mean 0.0.0.0?
--
i hope you could help with that.
thanks