Reading...
Play button
Play button
Use LEFT and RIGHT arrow keys to navigate between flashcards;
Use UP and DOWN arrow keys to flip the card;
H to show hint;
A reads text to speech;
45 Cards in this Set
- Front
- Back
|
What is the difference between an MDS Manager and Container?
|
MDS Manager contains Provider-1 R70 system information. MDS Container holds the CMAs. A Container can be on the same box as the Manger, or multiple Containers can be on separate hardware.
|
|
|
In an environment where there are numerous Customers, what is the recommendation for MDS Containers?
|
It is recommended that you use several Containers to "house" the CMAs.
|
|
|
When is a point-of-presence (POP) configuration appropriate?
|
When MSPs offer other services to their clients, such as Internet access, in addition to maintaining company firewalls. Using leased lines, a Customer is able to connect securely with an MSP at the POP. From the POP, the Customer can send and receive Internet data. (Example shows a CLM local to the Customer, instead of being located in the NOC)
|
|
|
How many CMAs can a SecurePlatform MDS Container hold?
|
500
|
|
|
How many CMAs can an MDS Container on Solaris hold?
|
250, because that is a Solaris limit of VIPs per NIC.
|
|
|
An MLM can maintain logs for up to how many CMAs?
|
250
|
|
|
When using a NOC firewall, why can't you use Global Properties to manage control connections to the CMAs?
|
Because the CMAs have different virtual IP addresses, and the traffic is passing through the firewall (instead of sourcing or destining from it).
|
|
|
Where does Provider-1 R70 consolidate all management tasks?
|
Network Operations Center
|
|
|
Does an administrator with Management permissions have view options for GUI clients?
|
No, that is at the MDS level.
|
|
|
What is the command to disable the trial-period license on a CMA before its expiration?
|
cpprod_util CPPROD_SetPnPDisable 1
|
|
|
How many CMAs and how many Virtual Systems does the 15-day trial license permit?
|
200 CMAs and 5 Virtual Systems.
|
|
|
What are the system requirements for a Provider-1 MDS?
|
Linux
- Pentium IV or 3GHz equivalent - 2GB free disk space - 4GB RAM - 1+ NICs - CD-ROM drive Solaris - UltraSPARC III 900MHz (everything else is same as above) SecurePlatform - 10 GB free disk space (everything else is the same) |
|
|
What is the supported version of Linux for the MDG?
|
RHEL 5.0 kernel 2.6.18 only. Must have the sharutils-4.6.1-2 and compat-libstdc++-33-3.2.3-61 packages. SeLinux must be disabled.
|
|
|
What packets are required for Solaris to run the MDG?
|
SUNWlibc
SUNWlibCx (except Solaris 10) SUNWter SUNWadmc SUNWadmfw |
|
|
What are the key directories for the MDS?
|
bin
scripts lib conf system customers |
|
|
Name that env variable!
Root of MDS installation |
$MDSDIR
|
|
|
Name that env variable!
Location of P1 internal utilities and resources |
$MDS_SYSTEM
|
|
|
Name that env variable!
Smart Update root directory |
$SUDIR
|
|
|
Name that env variable!
Root of CPsuite files (/CPsuite) |
$FWDIR
|
|
|
Name that env variable!
Location of registry file |
$CPREGDIR
|
|
|
Name that env variable!
Root of CPshared files (/CPshrd) |
$CPDIR
|
|
|
Name that env variable!
Virtual IP of the CMA or the MDS |
$MSP_SOMEIP_ADDR
|
|
|
What would be the full directory to a CMA named MyCMA?
|
/var/opt/CPmds-R70/customers/MyCMA/
|
|
|
What are the four directories within each CMA are separated because they contain private information for the Customer?
|
$FWDIR/conf
$FWDIR/log $CPDIR/conf $CPDIR/registry |
|
|
What is the P1Shell?
|
P1Shell is a command line shell that allows administrators to run Provider-1 CLI commands on the MDS without root permissions in both the MDS and CMA environments. (Similar to cpshell in SPLAT)
|
|
|
What does the mdsconfig utility do?
|
Setup the MDS parameters and assign basic configuration details, such as GUI Clients, Administrator rights, etc. (Similar to cpconfig in SPLAT)
|
|
|
Define this command:
mdsenv |
Sets the environment variable for the MDS. Once the MDS environment is set, all MDS specific commands can be executed.
|
|
|
Define this command:
mdsstart [-m] |
Starts the MDS and all CMAs. The -m option starts the MDS but not the CMAs.
|
|
|
Define this command:
mdsstop [-m] |
Stops the MDS and all CMAs. The -m stops the MDS without stopping the CMAs.
|
|
|
Define this command:
mdscmd |
A CPMI client that allows an Administrator to add or remove a Customer or use the mirror option to back up MDS information. This utility walks the Administrator through the addition or removal of Customers from the MDS, and all mdscmd commands are logged and synchronized with other MDS machines.
|
|
|
Define this command:
mdsstat |
Displays the detailed information on the process status of both the MDS and CMAs.
|
|
|
Define this command:
pclic printlic |
Displays all MDS licenses.
|
|
|
Define this command:
cplic putlic |
Allows Administrators to add licenses to the MDS.
|
|
|
Define this command:
fw mds ver |
Displays the version information of the MDS DLL.
|
|
|
Define this command:
mcd |
Changed the directory within the mdserver variable for $FWDIR's current value.
|
|
|
Define this command:
mdsenv [CMA name] |
Sets the environment variable for the specified CMA. Once the CMA environment is set, all CMA-specific commands can be executed. This command must be repeated, referencing the appropriate CMA, if the user intends to execute commands for a different CMA. All CMA-specific commands can only take place once the correct environment variable has been set.
|
|
|
Define this command (within a CMA):
fw ver |
Displays the current version information for the CMA for which the environment is set.
|
|
|
Define this command (within a CMA):
cplic printlic |
Displays all licenses assigned to the CMA for which the environment is set.
|
|
|
Define this command (within a CMA):
cplic putlic |
Adds licenses to the CMA for which the environment is set.
|
|
|
Which Global IPS Assign Mode does Check Point recommend for most deployments?
|
Override
|
|
|
Can a Remote Access VPN be configured in Global VPN?
|
Nope
|
|
|
Is Traditional Mode VPN supported in Global SmartDashboard?
|
Nope
|
|
|
What must you have in your file system PATH in order run mds_restore?
|
/user/ucb - The MDS will check your logged in user account by execuring a whoami command
|
|
|
What file can you edit on the CMA to define from which physical interface to branch a virtual interface?
|
vip_index.conf
|
|
|
Where is the Global Policy History File located?
|
Each Customer's log directory, named gpolicy.log
|
