syslog and SMS are not among the options, that leaves B: https://sc1.checkpoint.com/documents/R81/WebAdminGuides/EN/CP_R81_ThreatPrevention_AdminGuide/Topics-TPG/The_Threat_Prevention_Policy.htm#Threat_Prevention_Track_Options

Tracking options and their description Track Option Description None Do not generate an alert. Alert Generate a log and run a command, such as display a popup window, send an email alert or an SNMP trap alert, or run a user-defined script as defined in the Menu > Global Properties > Log and Alert > Alerts. Packet Capture Adds raw IPS, Anti-Virus, Anti-BotClosed, Threat Emulation and Threat ExtractionClosed packet data to the Threat Prevention logs. Only blocked packets are added. (see Packet Capture). Forensics Adds fields to the Threat Prevention logs. The extra information gives you a deeper understanding of an attack (see Advanced Forensics Details). Maybe A?

B is correct answer. Look at the picture here https://supportcenter.checkpoint.com/supportcenter/portal?

I think - B

There is Log, SNMP, mail and user alert, no syslog or SMS, so answer B

This is confusing as per the checkpoint documentation: https://sc1.checkpoint.com/documents/R81/WebAdminGuides/EN/CP_R81_ThreatPrevention_AdminGuide/Topics-TPG/The_Threat_Prevention_Policy.htm#Threat_Prevention_Track_Options 'None' is clearly a listed track option, which rules out B & D. The 'Alert' option includes popup window, email alert, SNMP trap alert and user-define scripts. Then addition-al options "Packet Capture" and "Forensics" are listed which aren't mentioned at all in these answers. Honestly I just hope these answers are wrong as none of them clearly are the answer IMO.