- All Exams Instant Download
Which of the following statements are correct?
View the exhibit. Which of the following statements are correct? (Choose two.)A . This setup requires at least two firewall policies with the action set to IPsec. B. Dead peer detection must be disabled to support this type of IPsec setup. C. The TunnelB route is the primary route for...
Which CLI command will display sessions both from client to the proxy and from the proxy to the servers?
Which CLI command will display sessions both from client to the proxy and from the proxy to the servers?A . diagnose wad session list B. diagnose wad session list | grep hook-pre&&hook-out C. diagnose wad session list | grep hook=pre&&hook=out D. diagnose wad session list | grep "hook=pre"&"hook=out"View AnswerAnswer: A
Which two statements about FortiGate FSSO agentless polling mode are true? (Choose two.)
Which two statements about FortiGate FSSO agentless polling mode are true? (Choose two.)A . FortiGate uses the AD server as the collector agent. B. FortiGate uses the SMB protocol to read the event viewer logs from the DCs. C. FortiGate does not support workstation check . D. FortiGate directs the...
Based on the exhibit, which configuration change can the administrator make to allow Twitter while blocking all other social networking sites?
Refer to exhibit. An administrator configured the web filtering profile shown in the exhibit to block access to all social networking sites except Twitter. However, when users try to access twitter.com, they are redirected to a FortiGuard web filtering block page. Based on the exhibit, which configuration change can the...
Which IP address will be used to source NAT the internet traffic coming from a workstation with the IP address 10.0.1.10?
Refer to the exhibit. The exhibit contains a network diagram, virtual IP, IP pool, and firewall policies configuration. The WAN (port1) interface has the IP address 10.200. 1. 1/24. The LAN (port3) interface has the IP address 10 .0.1.254. /24. The first firewall policy has NAT enabled using IP Pool....
What order must FortiGate use when the web filter profile has features enabled, such as safe search?
The HTTP inspection process in web filtering follows a specific order when multiple features are enabled in the web filter profile. What order must FortiGate use when the web filter profile has features enabled, such as safe search?A . DNS-based web filter and proxy-based web filter B. Static URL filter,...
Which two policies must be configured to allow traffic on a policy-based next-generation firewall (NGFW) FortiGate?
CORRECT TEXT Which two policies must be configured to allow traffic on a policy-based next-generation firewall (NGFW) FortiGate? (Choose two.)A . Security policy B. SSL inspection and authentication policyView AnswerAnswer: AB
In an explicit proxy setup, where is the authentication method and database configured?
In an explicit proxy setup, where is the authentication method and database configured?A . Proxy Policy B. Authentication Rule C. Firewall Policy D. Authentication schemeView AnswerAnswer: D
Which statement is true about the session diagnostic output?
Refer to the exhibit. Which contains a session diagnostic output. Which statement is true about the session diagnostic output?A . The session is in SYN_SENT state. B. The session is in FIN_ACK state. C. The session is in FTN_WAIT state. D. The session is in ESTABLISHED state.View AnswerAnswer: A Explanation:...
Which three statements are true regarding session-based authentication? (Choose three.)
Which three statements are true regarding session-based authentication? (Choose three.)A . HTTP sessions are treated as a single user. B. IP sessions from the same source IP address are treated as a single user. C. It can differentiate among multiple clients behind the same source IP address. D. It requires...
