Check Point Certified Multi-Domain Security Management Specialist (CCMS) — Question 2

After kernel debug with “fw ctl debug” you received a huge amount of information. It was saved in a very large file that is difficult to open and analyze with standard text editors. Suggest a solution to solve this issue.

Answer options

• A. Reduce debug buffer to 1024KB and run debug for several times
• B. Use Check Point InfoView utility to analyze debug output
• C. Use “fw ctl zdebug” because of 1024KB buffer size
• D. Divide debug information into smaller files. Use “fw ctl kdebug -f -o “filename” -m 25 - s “1024”

Correct answer: D

Explanation

The correct answer is D because using the command provided allows you to divide the large debug file into smaller, more manageable parts, making it easier to analyze. The other options either do not address the file size issue effectively or suggest methods that do not reduce the file's complexity.