- All Exams Instant Download
Which command can be used to sniffer the ESP traffic for the VPN DialUP_0?
Examine the output from the ‘diagnose vpn tunnel list’ command shown in the exhibit; then answer the question below. Which command can be used to sniffer the ESP traffic for the VPN DialUP_0?A . diagnose sniffer packet any ‘port 500’B . diagnose sniffer packet any ‘esp’C . diagnose sniffer packet...
Which one of the following statements is true regarding FortiGate’s inspection of this session?
View the exhibit, which contains an entry in the session table, and then answer the question below. Which one of the following statements is true regarding FortiGate’s inspection of this session?A . FortiGate applied proxy-based inspection.B . FortiGate forwarded this session without any inspection.C . FortiGate applied flow-based inspection.D ....
Which of the following statements are correct regarding application layer test commands? (Choose two.)
Which of the following statements are correct regarding application layer test commands? (Choose two.)A . They are used to filter real-time debugs.B . They display real-time application debugs.C . Some of them display statistics and configuration information about a feature or process.D . Some of them can be used to...
Which statement is correct regarding this command?
An administrator has configured two FortiGate devices for an HA cluster. While testing the HA failover, the administrator noticed that some of the switches in the network continue to send traffic to the former primary unit. The administrator decides to enable the setting link-failed-signal to fix the problem. Which statement...
Which of the following statements is true regarding this configuration?
View the global IPS configuration, and then answer the question below. Which of the following statements is true regarding this configuration?A . IPS will scan every byte in every session.B . FortiGate will spawn IPS engine instances based on the system load.C . New packets will be passed through without...
Which two configuration settings change the behavior for content-inspected traffic while FortiGate is in conserve mode? (Choose two.)
Which two configuration settings change the behavior for content-inspected traffic while FortiGate is in conserve mode? (Choose two.)A . IPS failopenB . mem failopenC . AV failopenD . UTM failopenView AnswerAnswer: AC
If the priority on route ID 1 were changed from 5 to 20, what would happen to traffic matching that user’s session?
Refer to the exhibits, which contain configuration on FortiGate and partial session information. All traffic to the Internet currently egresses from port1. The exhibit shows partial session information for Internet traffic from a user on the internal network. If the priority on route ID 1 were changed from 5 to...
Based on the output, which two statements are correct?
Refer to the exhibit, which contains the partial output of a diagnose command. Based on the output, which two statements are correct? (Choose two.)A . Anti-replay is enabled.B . DPD is disabled.C . Remote gateway IP is 10.200.4.1.D . Quick mode selectors are disabled.View AnswerAnswer: AC
Which two statements about application layer test commands are true? (Choose two.)
Which two statements about application layer test commands are true? (Choose two.)A . They are used to filter real-time debugs.B . They display real-time application debugs.C . Some of them can be used to restart an application.D . Some of them display statistics and configuration information about a feature or...
Which two statements regarding the output in the exhibit are true?
Refer to the exhibit, which contains the output of a diagnose command. Which two statements regarding the output in the exhibit are true? (Choose two.)A . FortiGate will probe 121.111.236.179every fifteen minutes for a response.B . Servers with a negative TZ value are experiencing a service outage.C . Servers with...
