FCP_FGT_AD-7.4

Refer to the exhibit. Which statement about the configuration settings is true?A . When a remote user accesses http://10.200.1.1:443, the SSL-VPN login page opens.B . When a remote user accesses https://10.200.1.1:443, the SSL-VPN login page opens.C . When a remote user accesses https://10.200.1.1:443, the FortiGate login page opens.D . The...

Which two settings are required for SSL VPN to function between two FortiGate devices? (Choose two.)A . The client FortiGate requires a manually added route to remote subnets.B . The client FortiGate requires a client certificate signed by the CA on the server FortiGate.C . The server FortiGate requires a...

Which statement about firewall policy NAT is true?A . DNAT is not supported.B . DNAT can automatically apply to multiple firewall policies, based on DNAT rules.C . You must configure SNAT for each firewall policy.D . SNAT can automatically apply to multiple firewall policies, based on SNAT rules.View AnswerAnswer: C...

Which type of logs on FortiGate record information about traffic directly to and from the FortiGate management IP addresses? A. Local traffic logs B. Forward traffic logs C. System event logs D. Security logsView AnswerAnswer: A Explanation: The type of logs on FortiGate that records information about traffic directly to...

An administrator is configuring an Ipsec between site A and site B. The Remotes Gateway setting in both sites has been configured as Static IP Address. For site A, the local quick mode selector is 192.16.1.0/24 and the remote quick mode selector is 192.16.2.0/24. How must the administrator configure the...

Which two statements are true about the FGCP protocol? (Choose two.) A. FGCP elects the primary FortiGate device. B. FGCP is not used when FortiGate is in transparent mode. C. FGCP runs only over the heartbeat links. D. FGCP is used to discover FortiGate devices in different HA groups.View AnswerAnswer:...

Refer to the exhibits. The exhibits contain a network diagram, and virtual IP, IP pool, and firewall policies configuration information. The WAN (port1) interface has the IP address 10.200.1.1/24. The LAN (port3) interface has the IP address 10.0.1.254/24. The first firewall policy has NAT enabled using IP pool. The second...

Refer to the exhibit. The exhibit displays the output of the CLI command: diagnose sys ha dump-by vcluster. Which two statements are true? (Choose two.)A . FortiGate SN FGVM010000065036 HA uptime has been reset.B . FortiGate devices are not in sync because one device is down.C . FortiGate SN FGVM010000064692...

Which statement is correct regarding the use of application control for inspecting web applications?A . Application control can identify child and parent applications, and perform different actions on them.B . Application control signatures are organized in a nonhierarchical structure.C . Application control does not require SSL inspection to identify web...

Which two statements are correct regarding FortiGate FSSO agentless polling mode? (Choose two.)A . FortiGate uses the AD server as the collector agentB . FortiGate uses the SMB protocol to read the event viewer logs from the DCsC . FortiGate points the collector agent to use a remote LDAP serverD...