Check Point Certified Security Administrator (CCSA) R82 — Question 6

What is the purpose of the Cleanup Rule in a security policy?

Answer options

• A. To accept all unmatched traffic
• B. To log all security events
• C. To block all known malicious traffic
• D. To drop or reject all traffic that does not match any rule in the rulebase

Correct answer: D

Explanation

The Cleanup Rule is designed to handle any traffic that does not match existing rules, ensuring that such traffic is dropped or rejected. Option A is incorrect because it suggests allowing unmatched traffic, which is the opposite of the Cleanup Rule's purpose. Options B and C do not accurately describe the Cleanup Rule; they pertain to logging events and blocking known threats, respectively.