Inclement weather and a UPS-failure cause a firewall to reboot. Earlier that day a tornado
destroyed the building where the firewall’s Management Module was located. The Management
Module was not recovered and has not been replaced.
Bases on the scenario, which of the following statements is FALSE?
A.
The firewall will continue to enforce the last rule base installed.
B.
The firewall will log locally.
C.
The firewall will fetch the last installed policy form local host and install it.
D.
Communication between the firewall and the replacement Management Module must be
established before the replacement Management Module can install a policy on the firewall.
E.
Because the firewall cannot contact the Management Module, no policy will be installed.
Explanation:
When a Checkpoint Gateway cannot contact one of the management servers, it will boot up and
fetch the last successfully installed policy from the local disc enforcing the latest rule base
available when the Management server was active. In this case the Gateway will log locally. The
gateway will not get locked, it will keep running with that policy until you can contact a valid
management server.
Incorrect Answers:
A: This is true, when the firewall module cannot contact its management server, it enforces the last
successfully installed policy.
B: This is true, the firewall module logs locally until its Management server comes reachable
again.
C: This is true, when the firewall module cannot contact its management server it fetch the last
successfully installed policy from itself.
D: If you want to install a policy from a replacement management server you first need to make
contact with it, and negotiate a secure channel for the data transmission containing the policy
definition in inspect code.