Check Point Certified Security Expert (CCSE) R80 — Question 196

How does the Anti-Virus feature of the Threat Prevention policy block traffic from infected websites?

Answer options

• A. By dropping traffic from websites identified through ThreatCloud Verification and URL Caching
• B. By dropping traffic that is not proven to be from clean websites in the URL Filtering blade
• C. By allowing traffic from websites that are known to run Antivirus Software on servers regularly
• D. By matching logs against ThreatCloud information about the reputation of the website

Correct answer: D

Explanation

The correct answer is D because it describes how the system uses ThreatCloud data to assess and block traffic based on website reputation. Option A is incorrect as it focuses on URL Caching and Verification, which are not the primary methods for blocking traffic. Option B is also wrong since it refers to filtering out traffic from unverified sites, while option C incorrectly suggests that traffic from websites running antivirus software is allowed.