Welcome to ExamTopics
ExamTopics Logo
- Expert Verified, Online, Free.
Mail Us[email protected]
Menu
Checkpoint Discussions
exam questions

Exam 156-315.80 All Questions

View all questions & answers for the 156-315.80 exam
Go to Exam

Exam 156-315.80 topic 1 question 197 discussion

Actual exam question from Checkpoint's 156-315.80
Question #: 197
Topic #: 1
[All 156-315.80 Questions]

Using Threat Emulation technologies, what is the best way to block .exe and .bat file types?

  • A. enable DLP and select.exe and .bat file type
  • B. enable .exe & .bat protection in IPS Policy
  • C. create FW rule for particular protocol
  • D. tecli advanced attributes set prohibited_file_types exe.bat
Show Suggested Answer Hide Answer
Suggested Answer: A 🗳️
by wongex23 at Oct. 30, 2019, 2:38 p.m.

Comments

Chosen Answer:
This is a voting comment (?) , you can switch to a simple comment.
Switch to a voting comment New
Submit Cancel
wongex23
Highly Voted 5 years ago
Correct answer should be "D" https://community.checkpoint.com/fyrhh23835/attachments/fyrhh23835/taiwan/422/1/Check%20Point%20Sandblast%20PoC%20Guide%20v91.pdf
upvoted 10 times
pfunkylol
4 years, 10 months ago
tecli refers to scanning archives. 10.10.3 Blocking filetypes inside archives To block certain filetypes inside archives (which is currently not possible with AV filetype blocking) use the following TECLI command: Enabling prohibited file types in archives On the gateway, run the command: tecli advanced attribute set prohibited_file_types <file_type1>,<file_type2>
upvoted 2 times
...
eliteone11
4 years, 8 months ago
I agree with wongex23. DLP has nothing to do with the "Threat Emulation" blade whatsoever.
upvoted 1 times
...
...
kambata
Most Recent 1 year, 11 months ago
R81.10: Process all enabled file types - This option is selected by default. Click the blue link to see the list of supported file types. Out of the supported file types, select the files to be scanned by the Threat Emulation Software Blade. Note - You can find this list of supported file types also in Manage & Settings view > Blades > Threat Prevention > Advanced Settings > Threat Emulation > File Type Support. https://sc1.checkpoint.com/documents/R81/WebAdminGuides/EN/CP_R81_ThreatPrevention_AdminGuide/Topics-TPG/Configuring-Threat-Emulation-Settings.htm
upvoted 1 times
...
Hernan_Mella
2 years, 2 months ago
https://supportcenter.checkpoint.com/supportcenter/portal?eventSubmit_doGoviewsolutiondetails=&solutionid=sk123140
upvoted 1 times
...
Amathai1803
2 years, 8 months ago
Had this question today in exam. selected D as the option
upvoted 1 times
babochnik
2 years, 3 months ago
I also got caught on the exam in August
upvoted 1 times
...
...
Berzerk
4 years, 3 months ago
DLP, IPS and FW blades have nothing to do with Threat Emulation Blade. Correct answer is D
upvoted 2 times
...

Get IT Certification

Unlock free, top-quality video courses on ExamTopics with a simple registration. Elevate your learning journey with our expertly curated content. Register now to access a diverse range of educational resources designed for your success. Start learning today with ExamTopics!

Start Learning for free
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel