Welcome to ExamTopics
ExamTopics Logo
- Expert Verified, Online, Free.
Mail Us[email protected]
Menu
Checkpoint Discussions
exam questions

Exam 156-315.80 All Questions

View all questions & answers for the 156-315.80 exam
Go to Exam

Exam 156-315.80 topic 1 question 146 discussion

Actual exam question from Checkpoint's 156-315.80
Question #: 146
Topic #: 1
[All 156-315.80 Questions]

When an encrypted packet is decrypted, where does this happen?

  • A. Security policy
  • B. Inbound chain
  • C. Outbound chain
  • D. Decryption is not supported
Show Suggested Answer Hide Answer
Suggested Answer: B 🗳️
by dash71 at May 13, 2020, 11:36 a.m.

Comments

Chosen Answer:
This is a voting comment (?) , you can switch to a simple comment.
Switch to a voting comment New
Submit Cancel
dkx0stv
Highly Voted 4 years, 5 months ago
I agree, it's B. CCSE manual R80.10, page 228
upvoted 15 times
...
dash71
Highly Voted 4 years, 6 months ago
This is done in Inbound Chain. B is correct
upvoted 10 times
...
sis_net_sec
Most Recent 1 year ago
Selected Answer: B
Inbound chain. According to the web search results, the inbound chain is the sequence of inspection points that a packet goes through when it arrives at the firewall from an external network. https://security.stackexchange.com/questions/10684/i-i-o-o-packet-inspection-points-inside-a-check-point-firewall. The inbound chain consists of four inspection points: i, I, o, and O. https://security.stackexchange.com/questions/10684/i-i-o-o-packet-inspection-points-inside-a-check-point-firewall. The decryption of encrypted packets happens at the I inspection point, which is also where VPN decryption and encryption occurs https://supportcenter.checkpoint.com/supportcenter/portal?eventSubmit_doGoviewsolutiondetails=&solutionid=sk64060https://security.stackexchange.com/questions/10684/i-i-o-o-packet-inspection-points-inside-a-check-point-firewall.
upvoted 1 times
...
henkpoa
2 years, 8 months ago
Selected Answer: B
B. Done in inbound chain, verified in my own firewall via fw ctl chain command.
upvoted 3 times
...
lordlich
2 years, 9 months ago
Inbound chain
upvoted 2 times
...
saicosocial
3 years, 3 months ago
[Expert@MyGW:0]# fw ctl chain in chain (23): 0: -7fffffff (0000000000000000) (00000000) SecureXL inbound (sxl_in) 1: -7ffffffe (0000000000000000) (00000000) SecureXL inbound CT (sxl_ct) 2: -7f800000 (ffffffff8b6812b0) (ffffffff) IP Options Strip (in) (ipopt_strip) 3: -7d000000 (ffffffff8a96ee80) (00000003) vpn multik forward in 4: - 2000000 (ffffffff8a97d830) (00000003) vpn decrypt (vpn) 5: - 1fffffa (ffffffff8a9533a0) (00000001) l2tp inbound (l2tp) 6: - 1fffff8 (ffffffff8b67f0e0) (00000001) Stateless verifications (in) (asm) 7: - 1fffff7 (ffffffff8b67ec00) (00000001) fw multik misc proto forwarding 8: - 1fffff2 (ffffffff8a982aa0) (00000003) vpn tagging inbound (tagging) 9: - 1fffff0 (ffffffff8a983460) (00000003) vpn decrypt verify (vpn_ver)
upvoted 3 times
...
kambata
3 years, 11 months ago
B. inbound chain, sounds correct.
upvoted 4 times
...

Get IT Certification

Unlock free, top-quality video courses on ExamTopics with a simple registration. Elevate your learning journey with our expertly curated content. Register now to access a diverse range of educational resources designed for your success. Start learning today with ExamTopics!

Start Learning for free
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel