Check Point Certified Maestro Expert

Here you have the best Checkpoint 156-835 practice exam questions

  • You have 37 total questions to study from
  • Each page has 5 questions, making a total of 8 pages
  • You can navigate through the pages using the buttons at the bottom
  • This questions were last updated on November 22, 2024
Question 1 of 37

For a VSX configuration – Which statement is wrong?

    Correct Answer: A

    All Virtual Systems do not exist solely on the Security Management Orchestrator (SMO). Instead, Virtual Systems in a VSX configuration can be distributed across multiple appliances. This makes option 'A' the incorrect statement, as it wrongly implies that all Virtual Systems are confined to the SMO. Thus, the correct response is identifying this misconception about where Virtual Systems reside in a VSX environment.

Question 2 of 37

There are two 10Gbps dual-port NIC installed on a 6800 appliance. Which interfaces should be connected to Orchestrator 1 for downlinks' intra-orchestrator redundancy when using two Orchestrators?

    Correct Answer: D

    For achieving downlinks' intra-orchestrator redundancy when using two Orchestrators, the interfaces should be connected across different slots to ensure that each orchestrator has access to separate switch fabrics. Therefore, connecting Port 1 in Slot 1 and Port 1 in Slot 2 is necessary to provide redundancy and high availability. This setup ensures that if either orchestrator or slot fails, the other can take over the traffic handling, maintaining network resilience.

Question 3 of 37

One single Appliance supports 1M concurrent connections. How many concurrent connections will support Security Group of 2 Appliances?

    Correct Answer: A

    A single appliance supports 1 million concurrent connections. When you have two appliances in a Security Group, the total concurrent connections are generally additive, meaning the capacities are combined. Thus, with two appliances, the group should support 2 million concurrent connections.

Question 4 of 37

What does asg monitor command do?

    Correct Answer: D

    The 'asg monitor' command is used to show the real-time cluster status of Appliances in a Security Group. This command helps in monitoring the overall status and performance of the security appliances within the group, providing critical information for system administration and troubleshooting.

Question 5 of 37

What cannot be learned from the output of lldpctl?

    Correct Answer: A

    The lldpctl command, which is based on the Link Layer Discovery Protocol (LLDP), is used to display information about network devices connected to a computer network. While it can reveal details such as the appliance model, orchestrator's IP address, and serial number of the appliance, it does not provide information about the distribution mode. Therefore, 'Distribution mode' cannot be learned from the output of lldpctl.