Pamela is Cyber Security Engineer working for Global Instance Firm with large scale deployment of Check Point Enterprise Appliances using GAiA/R80.10. Company's Developer Team is having random access issue to newly deployed Application Server in DMZ's Application Server Farm Tier and blames DMZ Security Gateway as root cause. The ticket has been created and issue is at Pamela's desk for an investigation. Pamela decides to use Check Point's Packet Analyzer Tool-fw monitor to iron out the issue during approved Maintenance window. What do you recommend as the best suggestion for Pamela to make sure she successfully captures entire traffic in context of Firewall and problematic traffic?
A) Pamela should check SecureXL status on DMZ Security gateway and if it's turned ON. She should turn OFF SecureXL before using fw monitor to avoid misleading traffic captures.
B) Pamela should check SecureXL status on DMZ Security Gateway and if it's turned OFF. She should turn ON SecureXL before using fw monitor to avoid misleading traffic captures.
C) Pamela should use tcpdump over fw monitor tool as tcpdump works at OS-level and captures entire traffic.
D) Pamela should use snoop over fw monitor tool as snoop works at NIC driver level and captures entire traffic.
Correct Answer:
Verified
Q220: How would you enable VMAC Mode in
Q221: Which CLI command will reset the IPS
Q222: The essential means by which state synchronization
Q223: SandBlast agent extends 0 day prevention to
Q224: The following command is used to verify
Q226: Which statement is true about ClusterXL?
A) Supports
Q227: In ClusterXL Load Sharing Multicast Mode:
A) only
Q228: Which configuration file contains the structure of
Q229: What is the purpose of a SmartEvent
Q230: What is the difference between SSL VPN
Unlock this Answer For Free Now!
View this answer and more for free by performing one of the following actions
Scan the QR code to install the App and get 2 free unlocks
Unlock quizzes for free by uploading documents