Check Point Certified Multi-Domain Security Management Specialist (CCMS) — Question 58

When debugging is enabled on firewall kernel module using the ‘fw ctl debug’ command with required options, many debug messages are provided by the kernel that help the administrator to identify issues. Which of the following is true about these debug messages generated by the kernel module?

Answer options

• A. Messages are written to /etc/dmesg file
• B. Messages are written to a buffer and collected using ‘fw ctl kdebug’
• C. Messages are written to $FWDIR/log/fw.elg
• D. Messages are written to console and also /var/log/messages file

Correct answer: B

Explanation

The correct answer is B because the debug messages generated by the firewall kernel module are indeed stored in a buffer and can be accessed using the ‘fw ctl kdebug’ command. Option A is incorrect as messages are not logged in /etc/dmesg, while option C is wrong since the messages do not go to $FWDIR/log/fw.elg. Option D is also incorrect because the messages are not written to the console or /var/log/messages.