Check Point Certified Security Expert (CCSE) R80 — Question 281

During the Check Point Stateful Inspection Process, for packets that do not pass Firewall Kernel Inspection and are rejected by the rule definition, packets are:

Answer options

• A. Dropped without sending a negative acknowledgment
• B. Dropped without logs and without sending a negative acknowledgment
• C. Dropped with negative acknowledgment
• D. Dropped with logs and without sending a negative acknowledgment

Correct answer: D

Explanation

The correct answer is D because packets that are rejected by the rule definition are logged for auditing purposes but do not generate a negative acknowledgment to the sender. Options A and C are incorrect because they do not account for logging, while option B wrongly states that there are no logs generated.