Exam Details
Exam Code
:156-215.75Exam Name
:Check Point Certified Security AdministratorCertification
:CCSAVendor
:CheckPointTotal Questions
:543 Q&AsLast Updated
:Mar 08, 2025
CheckPoint CCSA 156-215.75 Questions & Answers
-
Question 101:
When using the Anti-Virus Content Security, how are different file types analyzed?
A. They are analyzed by their un-encoded format.
B. They are analyzed by their magic number.
C. They are analyzed by the MIME header.
D. They are analyzed by their file extension (i.e. .bat, .exe. .doc)
-
Question 102:
For which protocol is anti-virus not available?
A. SMTP
B. FTP
C. HTTPS
D. HTTP
-
Question 103:
Where can you view anti-spam status?
A. SmartView Monitor
B. SmartDashboard
C. SmartView Tracker
D. SmartUpdate
-
Question 104:
A security audit has determined that your unpatched Web application server is accessing a SQL server. Which IPS setting will allow the Security Gateway to prevent this error page from displaying information about the SQL server in your DMZ?
A. In Web Intelligence / General / HTTP Protocol Inspection, enables ASCII only response headers.
B. In web intelligence / HTTP Protocol Inspection, select the box Enforce Strict HTTP response parsing.
C. In application intelligence / FingerPrint Scrambling / WEB Apps, Select the Scramble error message checkbox.
D. In Web Intelligence / Information Disclosure / Error Concealment
-
Question 105:
When using vpn tu, which option must you choose if you want to rebuild your VPN for a specific IP (gateway)?
A. (6) Delete all IPsec SAs for a given User (Client)
B. (7) Delete all IPsec+IKE SAs for a given peer (GW)
C. (5) Delete all IPsec SAs for a given peer (GW)
D. (8) Delete all IPsec+IKE SAs for a given User (Client)
-
Question 106:
Which of the following statements about file-type recognition in Content Inspection is TRUE?
A. Antivirus status is monitored using SmartView Tracker.
B. A scan failure will only occur if the antivirus engine fails to initialize.
C. All file types are considered "at risk", and are not configurable by the Administrator or the Security Policy.
D. The antivirus engine acts as a proxy, caching the scanned file before delivering it to the client.
-
Question 107:
Which antivirus scanning method does not work if the Gateway is connected as a node in proxy mode?
A. Scan by Direction
B. Scan by File Type
C. Scan by Server
D. Scan by IP Address
-
Question 108:
Which OPSEC server can be used to prevent users from accessing certain Web sites?
A. LEA
B. AMON
C. UFP
D. CVP
-
Question 109:
How do you control the maximum number of mail messages in a spool directory?
A. In the Gateway object's SMTP settings under the Advanced window
B. in the smtp.conf file on the Security Management Server
C. In the Security Server window in Global Properties
D. In IPS SMTP settings
-
Question 110:
If you experience unwanted traffic from a specific IP address, how can you stop it most quickly?
A. Check anti-spoofing settings
B. Configure a rule to block the address
C. Create a SAM rule
D. Activate an IPS protection
Related Exams:
Tips on How to Prepare for the Exams
Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only CheckPoint exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your 156-215.75 exam preparations and CheckPoint certification application, do not hesitate to visit our Vcedump.com to find your solutions here.