
Pass Your Exam With 100% Verified 156-590 Exam Questions
156-590 Dumps PDF - 156-590 Real Exam Questions Answers
NEW QUESTION # 44
Task: Verify the enabled Software Blades on a Check Point Security Gateway.
Answer:
Explanation:
See the Explanation.Explanation:
1- SSH into the Security Gateway.
2- Run the command: cplic print to check license details.
3- Use: enabled_blades or cpstat os to verify enabled blades.
4- Confirm Threat Prevention blades like IPS, Anti-Bot, and Anti-Virus are listed.
5- Use SmartConsole > Gateway > General Properties to visually confirm the same.
NEW QUESTION # 45
Task: Disable high-performance impact protections temporarily during maintenance.
Answer:
Explanation:
See the Explanation.Explanation:
1- Go to IPS Protections.
2- Filter by "Performance Impact: Critical or High."
3- Select all > Action > Set to "Inactive" or "Detect."
4- Tag as "Temporarily Disabled."
5- Schedule to revert after maintenance.
NEW QUESTION # 46
Task: Confirm IPS protections are correctly layered when using shared layers.
Answer:
Explanation:
See the Explanation.Explanation:
1- Go to Threat Prevention Policy > Layers tab.
2- Confirm shared layer is attached to Threat Prevention layer.
3- Double-check profile bindings per rule.
4- Publish and install to apply globally.
5- Use logs to validate consistent protection across gateways.
NEW QUESTION # 47
Task: Configure Anti-Bot in the Corporate_TP_Strict profile to prevent all high-confidence threats.
Answer:
Explanation:
See the Explanation.Explanation:
1- Edit the Corporate_TP_Strict profile.
2- Navigate to the Anti-Bot tab.
3- Set High Confidence to Prevent.
4- Set Medium Confidence to Detect or Prevent, depending on policy.
5- Save and publish changes.
NEW QUESTION # 48
Task: Configure exceptions for Anti-Virus to ignore a known safe file hash.
Answer:
Explanation:
See the Explanation.Explanation:
1- Open SmartConsole > Threat Prevention > Protections.
2- Go to "Anti-Virus" protections.
3- Create a new exception using file hash under "Files & Hashes."
4- Set action to "Ignore" or "Detect."
5- Save, apply to profile, publish, and install policy.
NEW QUESTION # 49
Task: Configure specific scan settings in Anti-Virus for a performance-sensitive profile.
Answer:
Explanation:
See the Explanation.Explanation:
1- Clone the base profile > name it Performance_AV_Profile.
2- Under Anti-Virus, choose Stream Mode scanning.
3- Disable scanning for large file types (e.g., media).
4- Set threshold limits (e.g., max file size).
5- Apply this profile to critical servers or high-traffic rules.
NEW QUESTION # 50
Task: View IPS protections causing performance overhead.
Answer:
Explanation:
See the Explanation.Explanation:
1- Open SmartConsole > IPS Protections.
2- Sort by "Performance Impact."
3- Filter for "Critical" or "High."
4- Review actions-consider disabling or setting to "Detect."
5- Monitor gateway CPU usage post-modification.
NEW QUESTION # 51
Task: Monitor Anti-Bot and AV throughput and CPU usage.
Answer:
Explanation:
See the Explanation.Explanation:
1- SSH into the Gateway.
2- Run: cpview > press TAB to reach "Threat Prevention."
3- Note values for throughput, scanning rate, and CPU usage.
4- Exit with 'q' and monitor again post-traffic load test.
5- Use this to optimize scan settings if needed.
NEW QUESTION # 52
Task: Add a comment in a Threat Prevention profile to indicate usage purpose.
Answer:
Explanation:
See the Explanation.Explanation:
1- Open the custom profile (e.g., Corporate_TP_Strict).
2- Add a note in the description field: e.g., "Used for internal office users."
3- Save changes.
4- Optionally add version info or change history.
5- Use this for future auditing and documentation.
NEW QUESTION # 53
Task: Create and enable a custom IPS protection in SmartConsole.
Answer:
Explanation:
See the Explanation.Explanation:
1- Go to Threat Tools > IPS Protections > New Protection.
2- Define the protection name, CVE ID (if applicable), and description.
3- Choose protection type (e.g., protocol anomaly, port scanning).
4- Set an action to "Prevent" or "Detect."
5- Save it and apply it to a custom profile.
NEW QUESTION # 54
Task: Configure General Protections for all protocols.
Answer:
Explanation:
See the Explanation.Explanation:
1- Open Threat Prevention > Profiles > Edit selected profile.
2- Navigate to General Protections tab.
3- Enable protections like "Protocol Anomaly" or "Malicious Mail Content."
4- Set actions to Prevent/Detect based on severity.
5- Save and assign the profile to your policy.
NEW QUESTION # 55
Task: Assign Anti-Bot and Anti-Virus profiles to a Threat Prevention policy rule.
Answer:
Explanation:
See the Explanation.Explanation:
1- Open Threat Prevention > Policy.
2- Add a rule with appropriate Source, Destination, Services.
3- Under "Profile," assign the custom AV/AB profile.
4- Set Action to "Accept" and Track to "Log."
5- Publish and install the policy.
NEW QUESTION # 56
Task: Enable Anti-Bot and Anti-Virus software blades on a Security Gateway.
Answer:
Explanation:
See the Explanation.Explanation:
1- Open SmartConsole > Gateways & Servers.
2- Double-click the relevant Security Gateway.
3- Under the "General Properties" tab, enable "Anti-Bot" and "Anti-Virus."
4- Click OK > Publish the changes.
5- Install the Access Control and Threat Prevention policy.
NEW QUESTION # 57
Task: Verify Anti-Virus scan mode is set to "Stream-Based" on the gateway.
Answer:
Explanation:
See the Explanation.Explanation:
1- In SmartConsole, go to Gateway > Threat Prevention tab.
2- Locate Anti-Virus scan mode settings.
3- Ensure "Stream-Based" is selected (not Hold-Mode).
4- If needed, change the scan mode and reinstall policy.
5- Verify with cpview under Threat Prevention section.
NEW QUESTION # 58
Task: Revert a mistakenly modified IPS protection to its default state.
Answer:
Explanation:
See the Explanation.Explanation:
1- Go to IPS Protections > Locate modified entry.
2- Click "Revert to Check Point default."
3- Confirm action and apply changes.
4- Publish and install policy.
5- Log actions confirm protection now behaves as default.
NEW QUESTION # 59
Task: Customize Threat Prevention profile for web servers with fewer protections.
Answer:
Explanation:
See the Explanation.Explanation:
1- Clone an existing profile, name it Web_Servers_Profile.
2- Disable Anti-Bot (not applicable for outbound traffic).
3- Keep Anti-Virus and IPS with only essential protections enabled.
4- Set high-performance protections to "Detect" or "Inactive."
5- Apply the profile to traffic destined for web servers.
NEW QUESTION # 60
......
156-590 Dumps 100 Pass Guarantee With Latest Demo: https://www.passsureexam.com/156-590-pass4sure-exam-dumps.html
Prepare 156-590 Question Answers Free Update With 100% Exam Passing Guarantee [2026]: https://drive.google.com/open?id=1J41xFyI_laEoQWGr-utab5bOAV4TSbeH