- All Exams Instant Download
If the administrator knows that there is no NAT device located between both FortiGates, what command should the administrator execute?
An administrator wants to capture ESP traffic between two FortiGates using the built-in sniffer. If the administrator knows that there is no NAT device located between both FortiGates, what command should the administrator execute?A . diagnose sniffer packet any ‘udp port 500’B . diagnose sniffer packet any ‘udp port 4500’C...
Which statement are true regarding the output in the exhibit?
Examine the output of the 'diagnose debug rating' command shown in the exhibit; then answer the question below. Which statement are true regarding the output in the exhibit? (Choose two.)A . There are three FortiGuard servers that are not responding to the queries sent by the FortiGate.B . The TZ...
Which IP addresses are included in the output of this command?
Examine the output of the ‘diagnose ips anomaly list’ command shown in the exhibit; then answer the question below. Which IP addresses are included in the output of this command?A . Those whose traffic matches a DoS policy.B . Those whose traffic matches an IPS sensor.C . Those whose traffic...
Based on the above outputs, which is the FortiGuard web filter category for the web site www.fgt99.com?
Examine the partial output from two web filter debug commands; then answer the question below: Based on the above outputs, which is the FortiGuard web filter category for the web site www.fgt99.com?A . Finance and bankingB . General organization.C . Business.D . Information technology.View AnswerAnswer: C
Which statements are true regarding the Weight value?
View the exhibit, which contains the output of a diagnose command, and the answer the question below. Which statements are true regarding the Weight value?A . Its initial value is calculated based on the round trip delay (RTT).B . Its initial value is statically set to 10.C . Its value...
Which statements are correct regarding the output?
View the exhibit, which contains the output of get sys ha status, and then answer the question below. Which statements are correct regarding the output? (Choose two.)A . The slave configuration is not synchronized with the master.B . The HA management IP is 169.254.0.2.C . Master is selected because it...
Which one of the following statements is true regarding FortiGate’s inspection of this session?
View the exhibit, which contains an entry in the session table, and then answer the question below. Which one of the following statements is true regarding FortiGate’s inspection of this session?A . FortiGate applied proxy-based inspection.B . FortiGate forwarded this session without any inspection.C . FortiGate applied flow-based inspection.D ....
Why the default route using port2 is not displayed in the output of the second command?
Examine the following partial outputs from two routing debug commands; then answer the question below: Why the default route using port2 is not displayed in the output of the second command?A . It has a lower priority than the default route using port1.B . It has a higher priority than...
Which statements are true regarding the two entries in the FortiGate session table related with this traffic?
A FortiGate's portl is connected to a private network. Its port2 is connected to the Internet. Explicit web proxy is enabled in port1 and only explicit web proxy users can access the Internet. Web cache is NOT enabled. An internal web proxy user is downloading a file from the Internet...
Which command can be used to sniffer the ESP traffic for the VPN DialUP_0?
Examine the output from the ‘diagnose vpn tunnel list’ command shown in the exhibit; then answer the question below. Which command can be used to sniffer the ESP traffic for the VPN DialUP_0?A . diagnose sniffer packet any ‘port 500’B . diagnose sniffer packet any ‘esp’C . diagnose sniffer packet...
