- All Exams Instant Download
Which two tasks are automated using the Install Wizard on FortiManager? (Choose two.)
Which two tasks are automated using the Install Wizard on FortiManager? (Choose two.)A . Installing configuration changes to managed devices B. Importing interface mappings from managed devices C. Adding devices to FortiManager D. Previewing pending configuration changes for managed devicesView AnswerAnswer: A,D Explanation: Reference: https://docs.fortinet.com/document/fortimanager/6.2.0/administration-guide/668612/using-the-install-wizard-to-install-device-settings-only
In which two states is a given session categorized as ephemeral? (Choose two.)
In which two states is a given session categorized as ephemeral? (Choose two.)A . A TCP session waiting for FIN ACK B. A UDP session with packets sent and received C. A UDP session with only one packet received D. A TCP session waiting for the SYN ACKView AnswerAnswer: C,D
Which real time debug should an administrator enable to troubleshoot RADIUS authentication problems?
Which real time debug should an administrator enable to troubleshoot RADIUS authentication problems?A . Diagnose debug application radius -1. B. Diagnose debug application fnbamd -1. C. Diagnose authd console Clog enable. D. Diagnose radius console Clog enable.View AnswerAnswer: B Explanation: https://kb.fortinet.com/kb/documentLink.do?externalID=FD32838
In which order is each step and phase displayed in the debug output each time a new dial-up user is connecting to the VPN?
An administrator has configured a dial-up IPsec VPN with one phase 2, extended authentication (XAuth) and IKE mode configuration. The administrator has also enabled the IKE real time debug: diagnose debug application ike-1 diagnose debug enable In which order is each step and phase displayed in the debug output each...
Which statements are true regarding the output in the exhibit?
Examine the output of the ‘get router info bgp summary’ command shown in the exhibit; then answer the question below. Which statements are true regarding the output in the exhibit? (Choose two.)A . BGP state of the peer 10.125.0.60 is Established. B. BGP peer 10.200.3.1 has never been down since...
Which one of the following statements about this FortiGate is correct?
View the exhibit, which contains the output of a debug command, and then answer the question below. Which one of the following statements about this FortiGate is correct?A . It is currently in system conserve mode because of high CPU usage. B. It is currently in extreme conserve mode because...
Which statement about protocol options is true?
Which statement about protocol options is true?A . Protocol options allows administrators a streamlined method to instruct FortiGate to block all sessions corresponding to disabled protocols. B. Protocol options allows administrators the ability to configure the Any setting for all enabled protocols which provides the most efficient use of system...
Which statement about IKE and IKE NAT-T is true?
Which statement about IKE and IKE NAT-T is true?A . IKE is used to encapsulate ESP traffic in some situations, and IKE NAT-T is used only when the local FortiGate is using NAT on the IPsec interface. B. IKE is the standard implementation for IKEv1 and IKE NAT-T is an...
What is the purpose of an internal segmentation firewall (ISFW)?
What is the purpose of an internal segmentation firewall (ISFW)?A . It inspects incoming traffic to protect services in the corporate DMZ. B. It is the first line of defense at the network perimeter. C. It splits the network into multiple security segments to minimize the impact of breaches. D....
What can the administrator do to fix this problem?
An administrator has configured two FortiGate devices for an HA cluster. While testing HA failover, the administrator notices that some of the switches in the network continue to send traffic to the former primary device. What can the administrator do to fix this problem?A . Configure remote link monitoring to...
