One of the easiest exam for me.Took 15 days preparaton time and passed with 90%.U have 75 Q to answer in 2
hrs.

---

Choose the authentication method
1mobile Doctors need acceess --ans User Auth
2.Roaming user need access to
internet,should be authenticated evrytime - user authen
3.Allows access from specific IP addr - client
4.Authentication which does not load
firewall - session auth
5advantage of OS authen over VPN/FIREWALL-1 -ans user need not have user acct on VPN/FIREWALL.
6.Select which protocol is
not supported by user authen - HTTPS
7.which authentication scheme requires connection to firewall - client
8.which protocols are supported by
client authentication -all
9.what is the port no for telnet and http FOR client authentication - 259 and 900
10.conflict between NAT and
antispoofing occurs when - uncheck " perform translation at client side" in global properties
11.want to remove the inspection code,which command -
fwm unload
12.with default setting of global properties allows -
13.for user authentication what should the source column contain - user
group
14-what does session authetication require - session authentication agent on client
15-difference between cleanup rule and implicit
rule
16.which rule will come before stealth rule - client authenticatiom
17.firewll characteristic - what is not expressly permitted is
prohibited
18-what is the staus untrusted mean - firewll module is managed by external management server
19. what is the status ! mean - firewall
module status is problamatic
20.where does the VPN-1/FIREWALL-1 kernel reside - below network layer
21what is a firewall policy -
22 what will u
use to see the total packets passed thru the firewall - SmartView status
23what enforcement module does - inspects the traffic pasing thru
firewalla and generates inspection code,provides authentication and content security
24what management module does - cantains the rule and user
database.also contains the logging info
25.what does management client does - can define security policy and has a rule base editor
26.5-6
questions on SIC (I dont remember all the answers it has 2-3 correct answers in each questions)
27,Management server and modules are identified by -
Distinguished Name
28.Where does the ICA is present - Management Server
29- once u initiated a SIC what u cannot do - cannot rename a workstation
object
30SIC does not require - IKE
31- simple defination of spoofing
32.what will happen if u hide a rule - it will not be visible in the rule
base but will be enforced as a policy
33.why do u verify a policy - t check any inconsistency in the rule base
34.how do u increase the
performance for address translation when there is a netowrk with 10 subnets ----create a network object and include all the subnet unde it and do
translation
35.if u open a new log file from the SmartView tracker what happens to the older file ---it is saved under a file name mentioning the
current date and time.
36.for which objects u can do address translation- network,workstation and address range
37what is hide mode NAT
38.what
is static mode NAT (scenario on this)
39how do u block a connection - block intruder and block request window
40what is the default blocking
method - block from this source
40 what is not true of a client authen - it is more secure than user authentication
41.what is not true for
session authentication- can use limited no of session
42.u should not create NAT hidden for - behind a virtual IP address and behind internal
gateway addr
43 - 4-6 questions showing diagram of user,client and session authentication and asking u to choose the proper rule.