Certified SOC Analyst (CSA) — Question 65

What does [-n] in the following checkpoint firewall log syntax represents? fw log [-f [-t]] [-n] [-l] [-o] [-c action] [-h host] [-s starttime] [-e endtime] [-b starttime endtime] [-u unification_scheme_file] [-m unification_mode(initial|semi|raw)] [-a] [-k (alert name|all)] [-g] [logfile]

Answer options

• A. Speed up the process by not performing IP addresses DNS resolution in the Log files
• B. Display both the date and the time for each log record
• C. Display account log records only
• D. Display detailed log chains (all the log segments a log record consists of)

Correct answer: A

Explanation

The correct answer is A because the [-n] option is specifically designed to prevent DNS resolution, which speeds up the log retrieval process. Options B, C, and D do not describe the function of the [-n] option, as they pertain to displaying different types of information in the logs rather than affecting the speed of log processing.