C correct Answer
A - Fw sam is for suspicious activity monitor
B- Fw ctl conntab is only for showing connections and also doesn't have -x Flag or dport option
D - fwaccel is for acceleration and also it doesn't have any of the options or flags mentioned
C - Is the most suitable option since it has all the flags and 16 in hexadecimal is 22 (ssh) and as it mentioned on the following link this command is for advanced user and the flags -x -e should be used with careful
https://sc1.checkpoint.com/documents/R80.30/WebAdminGuides/EN/CP_R80.30_CLI_ReferenceGuide/html_frameset.htm?topic=documents/R80.30/WebAdminGuides/EN/CP_R80.30_CLI_ReferenceGuide/208178
In a Check Point firewall environment, you can use the fw tab command to clear specific connections based on criteria.
Command in Answer C is more specific as it targets the "connections" table and seems to use an entry (00000016) to clear a particular connection. The first command, on the other hand, attempts to clear connections with a destination port of 22 (SSH).
Kortex book (CCSE), page 227
"The fw ctl conntab can also be used to delete connection table entries with the -x parameter: fw ctl conntab-x -dport=22"
fw ctl conntab -x no info found in
https://sc1.checkpoint.com/documents/R81/WebAdminGuides/EN/CP_R81_CLI_ReferenceGuide/Topics-CLIG/FWG/fw-ctl-conntab.htm
C is more suitable
https://sc1.checkpoint.com/documents/R81.10/WebAdminGuides/EN/CP_R81.10_CLI_ReferenceGuide/Topics-CLIG/FWG/fw-tab.htm
-x [-e <Entry>]
Deletes all entries or the specified entry from the specified kernel table.
You can use this parameter only on the local Security Gateway.
I think it's B. I tried this on my Gateway and it dropped my SSH connection.
C is the command to delete a specific entry from the connections table using its Hex reference.
I would say C is correct. fw tab command lists -x as a possible parameter, fw ctl conntab does not.
"-x [-e <Entry>] Deletes all entries or the specified entry from the specified kernel table."
https://sc1.checkpoint.com/documents/R81/WebAdminGuides/EN/CP_R81_CLI_ReferenceGuide/Topics-CLIG/FWG/fw-tab.htm
A voting comment increases the vote count for the chosen answer by one.
Upvoting a comment with a selected answer will also increase the vote count towards that answer by one.
So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.
NoBOdY366
5 months, 2 weeks agolacosta
9 months, 2 weeks agoBasselh
10 months, 1 week agolalaliano
10 months, 1 week agoDreschi
11 months agoYK_1
11 months, 1 week agotimmitch1987
1 year agoJimbob_101
1 year, 2 months agoShahrouz
1 year, 3 months agoMcBeano
1 year, 4 months agoBenTheEmperor
1 year, 4 months ago