Question #1
What is the purpose of Management ports located on the Rear Panel of the Orchestrator MHO-140?
- A . Reserved for internal purposes. Not in use.
- B . Out-of-band interfaces for access to Orchestrator itself.
- C . 1Gbps connectivity for Security Groups.
- D . Additional ports used as uplinks.
Correct Answer: B
Question #2
What is a Security Group?
- A . Logical group of computer and network resources
- B . Group of security administrators
- C . Group of security gateways
- D . Group of appliances with enabled NGTX software blades
Correct Answer: C
Question #3
Orchestrator should be defined in SmartConsole as:
- A . Orchestrator is not defined in SmartConsole
- B . Check Point host
- C . Security Gateway
- D . Host
Correct Answer: A
Question #4
What kinds of transceivers are supported on Orchestrator MHO-170?
- A . QSFP. QSFP28
- B . SFP. SFP+. SFP28
- C . SFP+, SFP28. QSFP
- D . SFP. QSFP, QSFP28
Correct Answer: A
Question #5
What does the lldpctl command do?
- A . Show all devices discovered by LLDP protocol on downlink ports
- B . Discover orchestrators
- C . Show all devices discovered by LLDP protocol on uplink ports
- D . Show all devices discovered by LLDP protocol on all ports
Correct Answer: D
Question #6
One single Appliance supports 1M concurrent connections.
How many concurrent connections will support Security Group of 2 Appliances?
- A . 2M
- B . 500K
- C . 4M
- D . 1M
Correct Answer: A
A
Explanation:
One single Appliance supports 1M concurrent connections, so a Security Group of 2 Appliances will support 2M concurrent connections.
How to troubleshoot Gaia Portal (WebUI)
https://supportcenter.checkpoint.com/supportcenter/portal?eventSubmit_doGoviewsolutiondetails=&solutionid=sk91380
VSX R81 Administration Guide
https://downloads.checkpoint.com/dc/download.htm?ID=103853
List of All Resolved Issues and New Features https://sc1.checkpoint.com/documents/Jumbo_HFA/R81.10/R81.10/R81.10-List-of-all-Resolved-Issues.htm
A
Explanation:
One single Appliance supports 1M concurrent connections, so a Security Group of 2 Appliances will support 2M concurrent connections.
How to troubleshoot Gaia Portal (WebUI)
https://supportcenter.checkpoint.com/supportcenter/portal?eventSubmit_doGoviewsolutiondetails=&solutionid=sk91380
VSX R81 Administration Guide
https://downloads.checkpoint.com/dc/download.htm?ID=103853
List of All Resolved Issues and New Features https://sc1.checkpoint.com/documents/Jumbo_HFA/R81.10/R81.10/R81.10-List-of-all-Resolved-Issues.htm
Question #7
What cannot be learned from the output ofasg monitorcommand?
- A . Appliances cluster status
- B . Port status
- C . Uptime
- D . D.Security Policy status
Correct Answer: B
Question #8
What command should be used for collecting diagnostic information about the orchestrator?
- A . cpinfo
- B . orch_info
- C . cpview
- D . asg pert -v
Correct Answer: B
Question #9
What is a downlink interface used for?
- A . To connect Orchestrators to customer’s infrastructure
- B . To connect appliances to customer’s infrastructure
- C . To connect appliances to Orchestrators
- D . To connect in between Orchestrators
Correct Answer: C
Question #10
Splitter cannot be used __________.
- A . To connect single port on orchestrator to multiple Appliances
- B . To connect single port on Appliance to multiple ports on the orchestrator
- C . To connect single port on orchestrator to the same Appliance
- D . To connect single port on orchestrator to multiple port on external switch
Correct Answer: B
Question #11
There’s a 23800 appliance with quad NIC in slot 5.
What would be the name of port 3 on this NIC?
- A . ethBP3-05
- B . ethsBP5-03
- C . ethsBP3-05
- D . ethsBP-05
Correct Answer: B
Question #12
Which licenses should be issued for the Orchestrator?
- A . No licenses are required for Orchestrator
- B . The Orchestrator is considered a Management server, hence it’s licensed the same way
- C . The Orchestrator requires NGTX license
- D . Depends on Software Blades enabled on connected appliances
Correct Answer: A
Question #12
Which licenses should be issued for the Orchestrator?
- A . No licenses are required for Orchestrator
- B . The Orchestrator is considered a Management server, hence it’s licensed the same way
- C . The Orchestrator requires NGTX license
- D . Depends on Software Blades enabled on connected appliances
Correct Answer: A
Question #12
Which licenses should be issued for the Orchestrator?
- A . No licenses are required for Orchestrator
- B . The Orchestrator is considered a Management server, hence it’s licensed the same way
- C . The Orchestrator requires NGTX license
- D . Depends on Software Blades enabled on connected appliances
Correct Answer: A
Question #12
Which licenses should be issued for the Orchestrator?
- A . No licenses are required for Orchestrator
- B . The Orchestrator is considered a Management server, hence it’s licensed the same way
- C . The Orchestrator requires NGTX license
- D . Depends on Software Blades enabled on connected appliances
Correct Answer: A
Question #12
Which licenses should be issued for the Orchestrator?
- A . No licenses are required for Orchestrator
- B . The Orchestrator is considered a Management server, hence it’s licensed the same way
- C . The Orchestrator requires NGTX license
- D . Depends on Software Blades enabled on connected appliances
Correct Answer: A
Question #12
Which licenses should be issued for the Orchestrator?
- A . No licenses are required for Orchestrator
- B . The Orchestrator is considered a Management server, hence it’s licensed the same way
- C . The Orchestrator requires NGTX license
- D . Depends on Software Blades enabled on connected appliances
Correct Answer: A
Question #12
Which licenses should be issued for the Orchestrator?
- A . No licenses are required for Orchestrator
- B . The Orchestrator is considered a Management server, hence it’s licensed the same way
- C . The Orchestrator requires NGTX license
- D . Depends on Software Blades enabled on connected appliances
Correct Answer: A
Question #12
Which licenses should be issued for the Orchestrator?
- A . No licenses are required for Orchestrator
- B . The Orchestrator is considered a Management server, hence it’s licensed the same way
- C . The Orchestrator requires NGTX license
- D . Depends on Software Blades enabled on connected appliances
Correct Answer: A
Question #20
Browse to the Orchestrator’s WebUI
- A . 3-4-2-6-5-7-1
- B . 3-1-7-2-4-6-5
- C . 1-4-2-5-7-3-6
- D . 7-4-2-5-3-1-6
Correct Answer: A
Question #21
What is the Iterator process?
- A . Iterator is the process that simulates distribution in case of Appliance failure
- B . Iterator is the process that follow Appliance recovery and simulates what was a distribution if recovered Appliance was alive
- C . Iterator is the process that runs on the Orchestrator and calculates a distribution in case of Appliance failure
- D . Iterator is the process that runs on the Orchestrator and calculates a distribution in case of Appliance recovery
Correct Answer: B
B
Explanation:
Iterator is the process that follows Appliance recovery and simulates what was a distribution if recovered Appliance was alive. The Iterator process runs on the Security Management Server and simulates the distribution of the Security Gateways if the recovered Appliance was alive. This helps ensure that the network remains secure and the traffic flow is optimized.
B
Explanation:
Iterator is the process that follows Appliance recovery and simulates what was a distribution if recovered Appliance was alive. The Iterator process runs on the Security Management Server and simulates the distribution of the Security Gateways if the recovered Appliance was alive. This helps ensure that the network remains secure and the traffic flow is optimized.
Question #22
What does the command’g_all’ do?
- A . It’s followed by other command and execute it on all active Appliances within Security Group
- B . It’s followed by other command and execute it on all Appliances connected to Orchestrator
- C . Switches all Appliances to Global mode
- D . Bring up all Appliances
Correct Answer: A
Question #23
Which file on Appliance includes information about Security Group?
- A . /etc/chassisdb.json
- B . /etc/sgdb.json
- C . /etc/smodb.json
- D . /etc/distutiljson
Correct Answer: B
Question #24
What is the purpose of g_tcpdump command?
- A . Collects traffic dump from Sync network
- B . The same as tcpdump, just on Scalable Platform
- C . Collects traffic dump from CIN network
- D . Collects traffic dump from all Active Appliances within Security Group
Correct Answer: D
Question #25
What cannot be a reason for "Failed to get remote orchestrator interfaces" error message, when clicking on "Orchestrator" in WebUI?
- A . Remote orchestrator has no empty interfaces
- B . One orchestrator only, but Orchestrator amount is 2 or no Sync in between orchestrators
- C . No Sync between orchestrators
- D . D.Single orchestrator environment, but configured Orchestrator amount is 2
Correct Answer: A
Question #26
What type of cluster can a Security Group can be compared to?
- A . VSLS
- B . Load Sharing Active /Active
- C . Active / Backup
- D . Active / Standby
Correct Answer: B
Question #27
What cannot be learned from the output of asg perf -v -p command?
- A . Average CPU usage on Appliances
- B . Real-time throughput
- C . Average CPU usage on Orchestrators
- D . Per-path distribution
Correct Answer: C