VPN Terms️️- VPN Community - A named collection of VPN domains, each protected by a
VPN gateway
- VPN Trust Entities - Certificate Authorities such as the Checkpoint Internal Certificate
Authority (ICA) used for creating SIC trusted connections and generating internal certificates
- VPN Dom...
CCSA R80 Checkpoint CCSA Exam with comprehensive questions
and answers 2024/2025
VPN Terms✔️✔️- VPN Community - A named collection of VPN domains, each protected by a
VPN gateway
- VPN Trust Entities - Certificate Authorities such as the Checkpoint Internal Certificate
Authority (ICA) used for creating SIC trusted connections and generating internal certificates
- VPN Domain - A group of computers and networks connected to a VPN tunnel by one VPN
gateway that handles encryption and protects VPN members
SIC Encryption Standard✔️✔️AES128 above R71. R71 or below use 3DES
SecureXL Traffic Flow Modes✔️✔️- Slow Path - Packets and connections are inspected by the
firewall and are not processed by SecureXL
- Medium Path - Packets that require deeper inspection cannot use the accelerated path. Firewall
offloads these packets. For example IPS inspected packets are offloaded to the IPS PSL (Passive
Streaming Library). SecureXL processes these packets more quickly than the slow path
- Accelerated Path - Packets and connections offloaded to SecureXL and not processed by the
firewall
User Directory✔️✔️Used to obtain ID and security information about network users
AppWiki✔️✔️enables application scanning and detection of more than 5000 distinct application
and more than 300000 Web 2.0 widgets
Checkpoint Software Blades✔️✔️- Mobile Access -- Configure how remote users access internal
resources when mobile
, - DLP - DLP in a SmartConsole - configure advanced tools to automatically identify data that
must not go outside the network
- Geo Policy - Create a policy for traffic to or from specific geopolitical or political locations
- HTTPS Policy - SSL Inspection (Configured in Smart Dashboard)
Trigger a failover of cluster members✔️✔️1. Log into Security Gateway CLI and run
clusterXL_admin down
2. SmartView Monitor, right-click security gateway member and select cluster memberstop
Command to uninstall security policy from CLI✔️✔️fw unloadlocal
Function of "Publish"✔️✔️The publish button makes any changes an administrator has made in
their management session visible to all other administrator sessions and saves it to the database
ClusterXL Modes✔️✔️*** FILL THESE IN ***
a. High Availability (Legacy Mode)
b. Load Sharing Multicast
c. Load Sharing Unicast
d. New High Availability
3 Authentication Methods used for SIC✔️✔️Certificates, Standards-Based SSL for the creation of
secure channels and 3DES or AES128
Order of NAT Priorities✔️✔️1. Static NAT
2. IP Pool NAT
3. Hide NAT
The benefits of buying summaries with Stuvia:
Guaranteed quality through customer reviews
Stuvia customers have reviewed more than 700,000 summaries. This how you know that you are buying the best documents.
Quick and easy check-out
You can quickly pay through credit card or Stuvia-credit for the summaries. There is no membership needed.
Focus on what matters
Your fellow students write the study notes themselves, which is why the documents are always reliable and up-to-date. This ensures you quickly get to the core!
Frequently asked questions
What do I get when I buy this document?
You get a PDF, available immediately after your purchase. The purchased document is accessible anytime, anywhere and indefinitely through your profile.
Satisfaction guarantee: how does it work?
Our satisfaction guarantee ensures that you always find a study document that suits you well. You fill out a form, and our customer service team takes care of the rest.
Who am I buying these notes from?
Stuvia is a marketplace, so you are not buying this document from us, but from seller johndocs. Stuvia facilitates payment to the seller.
Will I be stuck with a subscription?
No, you only buy these notes for $7.99. You're not tied to anything after your purchase.
