Should be D. With Stateful Inspection, the packet is intercepted at the network layer, but then the INSPECT Engine takes over. It extracts state-related information required for the security decision from all application layers and maintains this information in dynamic state tables for evaluating subsequent connection attempts.

D is the correct answer. Check points Inspect engine, which is installed on a security gateway, is used to extract state-related information from the packets and store that information in state tables.

It's D

From Check Point Certified Security Administrator (CCSA) R81.10 at page 25

The answer is (D) INSPECT Engine. The INSPECT Engine is a component of Check Point's FireWall-1 product that is responsible for extracting state-related information from packets and storing that information in state tables. This information is then used by the firewall to make security decisions, such as whether to allow or deny a connection. The STATE Engine, TRACK Engine, and RECORD Engine are all different components of the Check Point firewall, but they do not have the same function as the INSPECT Engine. The STATE Engine is responsible for maintaining state information for active connections, the TRACK Engine is responsible for tracking connections that have been terminated, and the RECORD Engine is responsible for recording information about all packets that pass through the firewall.

The correct answer is D

D is the correct answer. From Check Point Certified Security Administrator (CCSA) R81.10 at page 25

Answer is D

D is the correct answer.

Correct answer is D. From CCSA book R81.10.