ExamTopics Logo
Mail Us[email protected]
Menu
Checkpoint Discussions
exam questions

Exam 156-315.81 All Questions

View all questions & answers for the 156-315.81 exam
Go to Exam

Exam 156-315.81 topic 1 question 29 discussion

Actual exam question from Checkpoint's 156-315.81
Question #: 29
Topic #: 1
[All 156-315.81 Questions]

Which SmartEvent component is responsible to collect the logs from different Log Servers?

  • A. SmartEvent Server
  • B. SmartEvent Database
  • C. SmartEvent Collector
  • D. SmartEvent Correlation Unit
Show Suggested Answer Hide Answer
Suggested Answer: D 🗳️
by 18408 at Dec. 27, 2022, 6:37 a.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
Trangs
3 months, 1 week ago
D https://downloads.checkpoint.com/fileserver/SOURCE/direct/ID/103842/FILE/CP_R81_LoggingAndMonitoring_AdminGuide.pdf Page 109
upvoted 1 times
...
zut
3 months, 1 week ago
Selected Answer: A
I think it is SmartEvent Server. the correlation unit crunches the logs and compacts them into events.
upvoted 1 times
zut
3 months, 1 week ago
https://sc1.checkpoint.com/documents/R80.40/WebAdminGuides/EN/CP_R80.40_LoggingAndMonitoring_AdminGuide/Topics-LMG/SmartEvent-Architecture.htm
upvoted 1 times
...
zut
3 months, 1 week ago
Changed my mind, it's D because the the correlation unit receives all the RAW logs from the log server or firewall.
upvoted 1 times
...
...
Shahrouz
6 months, 2 weeks ago
Selected Answer: D
Obviously D
upvoted 1 times
...
nobuhide
7 months, 3 weeks ago
D is correct
upvoted 2 times
...
gperes
9 months, 3 weeks ago
Selected Answer: D
The key here is the part "different log servers"
upvoted 1 times
...
DaRkMaNFX
10 months, 2 weeks ago
D SmartEvent automatically prioritizes security events for action. This automation minimizes the amount of data that needs to be reviewed, reducing the use of resources. SmartEvent is capable of managing millions of logs per day per correlation unit in large networks. A correlation unit is used to analyze log entries and identify events.
upvoted 1 times
...
18408
1 year ago
Selected Answer: D
Looks like correct https://sc1.checkpoint.com/documents/R80.40/WebAdminGuides/EN/CP_R80.40_LoggingAndMo nitoring_AdminGuide/Topics-LMG/SmartEvent-Architecture.htm?tocpath=Event%20Analysis%7C_____3
upvoted 2 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
exam
Someone Bought Contributor Access for:
SY0-701
London, 1 minute ago