Check Point Certified Security Administrator (CCSA) R80 — Question 54

During the Check Point Stateful Inspection Process, for packets that do not pass Firewall Kernel Inspection and are rejected by the rule definition, packets are:

Answer options

• A. Dropped without sending a negative acknowledgment
• B. Dropped without logs and without sending a negative acknowledgment
• C. Dropped with negative acknowledgment
• D. Dropped with logs and without sending a negative acknowledgment

Correct answer: D

Explanation

The correct answer is D because rejected packets are logged for auditing and troubleshooting purposes, but they do not send a negative acknowledgment back to the sender. Options A and B incorrectly state that no logs are generated, and option C inaccurately claims that a negative acknowledgment is sent, which is not the case.