Check Point Certified Cloud Specialist (CCCS) R82 — Question 13

The two procedures available for debugging in the firewall kernel are: i. fw ctl zdebug ii. fw ctl debug/kdebug
Choose the correct statement explaining the difference in the two.

Answer options

• A. (i) Is used for general debugging, has a small buffer and is a quick way to set kernel debug flags to get an output via command line whereas (ii) is useful when there is a need for detailed debugging and requires additional steps to set the buffer and get an output via command line
• B. (i) is used to debug the access control policy only, however (ii) can be used to debug a unified policy
• C. (i) is used to debug only issues related to dropping traffic, however (ii) can be used for any firewall issue including NATing, clustering etc.
• D. (i) is used on a Security Gateway, whereas (ii) is used on a Security Management Server

Correct answer: A

Explanation

Option A is correct because it accurately describes the general and detailed debugging capabilities of fw ctl zdebug and fw ctl debug/kdebug, respectively. The other options mischaracterize the specific uses of each command, such as limiting their functions to specific policies or issues, which is not accurate.