Check Point Certified Security Expert (CCSE) R80 — Question 232

When running a query on your logs, to find records for user Toni with machine IP of 10.0.4.210 but exclude her tablet IP of 10.0.4.76, which of the following query syntax would you use?

Answer options

• A. Toni? AND 10.0.4.210 NOT 10.0.4.76
• B. To** AND 10.0.4.210 NOT 10.0.4.76
• C. Ton* AND 10.0.4.210 NOT 10.0.4.75
• D. ג€Toniג€ AND 10.0.4.210 NOT 10.0.4.76

Correct answer: D

Explanation

Option D is correct because it accurately specifies the user 'Toni' and uses the correct IP address while excluding the tablet IP with the proper syntax. Options A, B, and C contain errors in either the user identification or the IP exclusion, making them invalid for the required query.