NSE7_EFW-7.0 V1

What events are recorded in the crashlogs of a FortiGate device? (Choose two.)A . A process crash. B. Configuration changes. C. Changes in the status of any of the FortiGuard licenses. D. System entering to and leaving from the proxy conserve mode.View AnswerAnswer: A,D Explanation: diagnose debug crashlog read 275:...

An administrator has configured a dial-up IPsec VPN with one phase 2, extended authentication (XAuth) and IKE mode configuration. The administrator has also enabled the IKE real time debug: diagnose debug application ike-1 diagnose debug enable In which order is each step and phase displayed in the debug output each...

Two independent FortiGate HA clusters are connected to the same broadcast domain. The administrator has reported that both clusters are using the same HA virtual MAC address. This creates a duplicated MAC address problem in the network . What HA setting must be changed in one of the HA clusters...

View the global IPS configuration, and then answer the question below. Which of the following statements is true regarding this configuration?A . IPS will scan every byte in every session. B. FortiGate will spawn IPS engine instances based on the system load. C. New packets will be passed through without...

Examine the following partial outputs from two routing debug commands; then answer the question below: Why the default route using port2 is not displayed in the output of the second command?A . It has a lower priority than the default route using port1. B. It has a higher priority than...

Which real time debug should an administrator enable to troubleshoot RADIUS authentication problems?A . Diagnose debug application radius -1. B. Diagnose debug application fnbamd -1. C. Diagnose authd console Clog enable. D. Diagnose radius console Clog enable.View AnswerAnswer: B Explanation: https://kb.fortinet.com/kb/documentLink.do?externalID=FD32838

View the exhibit, which contains the output of a debug command, and then answer the question below. Which one of the following statements about this FortiGate is correct?A . It is currently in system conserve mode because of high CPU usage. B. It is currently in extreme conserve mode because...

Which statement about the designated router (DR) and backup designated router (BDR) in an OSPF multi-access network is true?A . FortiGate first checks the OSPF ID to elect a DR. B. Non-DR and non-BDR routers will form full adjacencies to DR and BDR only. C. BDR is responsible for forwarding...

Refer to the exhibit, which shows a partial routing table. Assuming all the appropriate firewall policies are configured, which two pings will FortiGate route? (Choose two.)A . Source IP address: 10.1.0.10. Destination IP address: 10.64.1.52 B. Source IPaddress: 10.72.3.52. Destination IP address: 10.1.0.254 C. Source IPaddress: 10.10.4.24, Destination IPaddress: 10.72.3.20...

Refer to the exhibit, which contains partial output from an IKE real-time debug. Based on the debug output, which phase 1 setting is enabled in the configuration of this VPN?A . auto-discovery-shortcut B. auto-discovery-forwarder C. auto-discovery-sender D. auto-discovery-receiverView AnswerAnswer: D Explanation: Reference: https://docs.fortinet.com/document/fortigate/6.0.0/handbook/320160/example-advpn-configuration First the Spoke receives SHORTCUT_OFFER, it respondes...