First at all, I had NO command line questions!!!
Study the Check Point pdf. files for FP2....very important
stuff you'll find over there, and I got a lots of q from those docs.
You can get those docs from here: http://www.infohacking.com/all/Firewalls/FW-
1/FP2/Docs/

The previous dumps, starting with Sept 16. are VERY good: alots of q from those dumps.

Here are a couple of q from my ex.(without
the correct answer!!!) :

1) What will NOT improve the performance of the FW-1?
a. use IP addreses range instead of wrkstation objects
b. kepp
the rule base simple
c. use network obj. instead of wkst. obj.
d. if most rules are for HTTP, put those rule at the bottom of you rule
base

2)User wants HTTP access to Internet, which is the best authorisation method if the user uses a specific computer.
a.
session
b.user
c.client

3)Benefits of Stateful inspection

4)FW-1 security policy is :
a. a set of explicit rule
b. a set of implicit
rules
c. something else
d. something else

5)What is TRUE about user groups:
a.Authorisation rules requires a group in the SOURCE
field
b.Authorisation rules requires a group in the Destinationtion field
c You must implement user groups in order to implement
authorisation

6)What you CANNOT do when you enable the SIC for a workstation object?
a.reset SIC
b.Edit the wkstproperties
c.edit the
obj.
d.rename the obj.
e.use the obj. in static NAT

7)Where you can implement NAT
a. domains,wkst,networks
b. OPSEC
devices,networks,wkst
c.logical servers, wkst,networks

8)To be most efective , the anti-spoofing should be cofigured on:
a.DMZ only
b.External
interface ONLY
c. Internal int. ONLY
d.All interfaces

9)The functions of management client

10)The functions of management module

11) what
type of groups you can add

a.VOIP groups
b. Simple
c.Groups with exclusion
d. something else
e. something else

---