ExamTopics Logo
Mail Us[email protected]
Menu
Checkpoint Discussions
exam questions

Exam 156-315.81.20 All Questions

View all questions & answers for the 156-315.81.20 exam
Go to Exam

Exam 156-315.81.20 topic 1 question 69 discussion

Actual exam question from Checkpoint's 156-315.81.20
Question #: 69
Topic #: 1
[All 156-315.81.20 Questions]

Using Threat Emulation technologies, what is the best way to block .exe and .bat file types?

  • A. Enable .exe bat protection in IPS Policy
  • B. tecli advanced attributes set prohibited_file_types exe, bat
  • C. create FW rule for particular protocol
  • D. enable DLP and select .exe and .bat file type
Show Suggested Answer Hide Answer
Suggested Answer: B 🗳️
by Rajeshkashi at May 27, 2024, 4:31 p.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
5a7f608
1 month, 2 weeks ago
Selected Answer: B
As user kambata correctly said in https://www.examtopics.com/discussions/checkpoint/view/7481-exam-156-31580-topic-1-question-197-discussion/ : "DLP, IPS and FW blades have nothing to do with Threat Emulation Blade"
upvoted 1 times
...
premoli
1 month, 3 weeks ago
Selected Answer: D
There a similiar command in https://support.checkpoint.com/results/sk/sk123140 to B option, but the sintax is wrong
upvoted 1 times
...
lironzruya7
5 months, 1 week ago
Selected Answer: B
Answer is B
upvoted 1 times
...
KuKuKu83
7 months, 3 weeks ago
Selected Answer: B
https://community.checkpoint.com/fyrhh23835/attachments/fyrhh23835/taiwan/422/1/Check%20Point%20Sandblast%20PoC%20Guide%20v91.pdf page 101 To block certain filetypes inside archives (which is currently not possible with AV filetype blocking) use the following TECLI command: Enabling prohibited file types in archives On the gateway, run the command: tecli advanced attribute set prohibited_file_types , For example to block every archive that contains an exe file run: tecli advanced attribute set prohibited_file_types exe
upvoted 1 times
...
Rajeshkashi
7 months, 3 weeks ago
Answer is B
upvoted 2 times
...
Rajeshkashi
7 months, 3 weeks ago
Answer is D
upvoted 2 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
exam
Someone Bought Contributor Access for:
SY0-701
London, 1 minute ago