Checkpoint Updated 156-215.81 Exam Questions and Answers by bruce

Check Point Security Management supports two types of Policy Layers:

Ordered Layers – Enforced in sequential order, where each rule is evaluated before moving to the next layer.

Inline Layers – A sub-layer within a rule that adds additional inspection without affecting other rules.

Option A (incorrect): "Inbound Layers and Outbound Layers" is not a Check Point terminology.

Option C (incorrect): "Structured Layers and Overlap Layers" do not exist in Check Point policy management.

Option D (incorrect): Check Point R81.X fully supports Policy Layers.

Thus, the correct answer is B. Ordered Layers and Inline Layers.

 The SIC Status “Unknown” means that there is no connection between the gateway and Security Management Server. This can happen if the gateway is down, unreachable, or has not been initialized yet12. References: Check Point R81 Security Management Administration Guide, Free Check Point CCSA Sample Questions and Study Guide

References: Threat Emulation is not a policy type available for each policy package. Threat Emulation is a software blade that is part of the Threat Prevention policy type. The other options are valid policy types that can be configured for each policy package. References: [Threat Prevention Administration Guide R80.40], [Security Policies Administration Guide R80.40]

The Secure Network Distributor (SND) is a feature of the Security Gateway that is used to distribute packets among Firewall instances . It improves the performance and scalability of the Firewall by utilizing multiple CPU cores. The other options are not related to SND. References: [Check Point Security Gateway Architecture and Packet Flow], [Free Check Point CCSA Sample Questions and Study Guide]