ExamTopics Logo
Mail Us[email protected]
Menu
Checkpoint Discussions
exam questions

Exam 156-315.80 All Questions

View all questions & answers for the 156-315.80 exam
Go to Exam

Exam 156-315.80 topic 1 question 455 discussion

Actual exam question from Checkpoint's 156-315.80
Question #: 455
Topic #: 1
[All 156-315.80 Questions]

How does the Anti-Virus feature of the Threat Prevention policy block traffic from infected websites?

  • A. By dropping traffic from websites identified through ThreatCloud Verification and URL Caching
  • B. By dropping traffic that is not proven to be from clean websites in the URL Filtering blade
  • C. By allowing traffic from websites that are known to run Antivirus Software on servers regularly
  • D. By matching logs against ThreatCloud information about the reputation of the website
Show Suggested Answer Hide Answer
Suggested Answer: D 🗳️
by Prathamesh2589 at Aug. 20, 2021, 6:38 a.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
babochnik
6 months, 3 weeks ago
Selected Answer: A
A local cache that gives answers to 99% of URL reputation requests. When the cache does not have an answer, it queries the ThreatCloud repository. For Anti-Virus - the signature is sent for file classification. Prevents malware download from the internet by preventing access to sites that are known to be connected to malware. Accessed URLs are checked by the gateway caching mechanisms or sent to the ThreatCloud repository to determine if they are permissible or not. If not, the attempt is stopped before any damage can take place. Uses the ThreatCloud repository to receive binary signature updates and query the repository for URL reputation and Anti-Virus classification. https://dl3.checkpoint.com/paid/0a/0a9a4722c3031fb380e5a9e4e64d1614/CP_R80.40_ThreatPrevention_AdminGuide.pdf?HashKey=1657703210_7cdeae13ccff67e55d7b3ddc432763b1&xtn=.pdf
upvoted 1 times
...
Amathai1803
11 months, 1 week ago
Had this question today in exam. selected A
upvoted 2 times
...
lordlich
1 year ago
A should be the answer
upvoted 2 times
...
Anni_CCSA
1 year, 2 months ago
A for sure. D talks about matching logs... then the connection has already been accepted / dropped
upvoted 3 times
...
Chickchick
1 year, 4 months ago
A is corret.
upvoted 1 times
...
Prathamesh2589
1 year, 5 months ago
D sounds right, but A sounds more right also page 607 CSSE book says option A Security Gtway use caching, Antivirus blade check against Threat cloud db! i would go with Option A
upvoted 3 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
exam
Someone Bought Contributor Access for:
SY0-701
London, 1 minute ago