- All Exams Instant Download
Which two statements are true?
Refer to the exhibit. The Root and To_Internet VDOMs are configured in NAT mode. The DMZ and Local VDOMs are configured in transparent mode. The Root VDOM is the management VDOM. The To_Internet VDOM allows LAN users to access internet. The To_lnternet VDOM is the only VDOM with internet access...
Given the interfaces shown in the exhibit. which two statements are true?
Refer to the exhibit. Given the interfaces shown in the exhibit. which two statements are true? (Choose two.)A . Traffic between port2 and port2-vlan1 is allowed by default.B . port1-vlan10 and port2-vlan10 are part of the same broadcast domain.C . port1 is a native VLAE . port1-vlan and port2-vlan1 can...
What is a possible reason for this?
Examine the IPS sensor configuration shown in the exhibit, and then answer the question below. An administrator has configured the WINDOWS_SERVERS IPS sensor in an attempt to determine whether the influx of HTTPS traffic is an attack attempt or not. After applying the IPS sensor, FortiGate is still not generating...
Which two types of traffic are managed only by the management VDOM? (Choose two.)
Which two types of traffic are managed only by the management VDOM? (Choose two.)A . FortiGuard web filter queriesB . PKIC . Traffic shapingD . DNSView AnswerAnswer: A,D
Which three pieces of Information will be Included in me sniffer output?
An administrator is running the following sniffer command: diagnose aniffer packer any "host 192.168.2.12" 5 Which three pieces of Information will be Included in me sniffer output? {Choose three.)A . Interface nameB . Packet payloadC . Ethernet headerD . IP headerE . Application headerView AnswerAnswer: ABC
If the Services field is configured in a Virtual IP (VIP), which statement is true when central NAT is used?
If the Services field is configured in a Virtual IP (VIP), which statement is true when central NAT is used?A . The Services field prevents SNAT and DNAT from being combined in the same policy.B . The Services field is used when you need to bundle several VIPs into VIP...
Which two protocols are used to enable administrator access of a FortiGate device? (Choose two.)
Which two protocols are used to enable administrator access of a FortiGate device? (Choose two.)A . SSHB . HTTPSC . FTMD . FortiTelemetryView AnswerAnswer: A,B Explanation: Reference: https://docs.fortinet.com/document/fortigate/6.4.0/hardening-your-fortigate/995103/buildingsecurity-into-fortios
How do you format the FortiGate flash disk?
How do you format the FortiGate flash disk?A . Load a debug FortiOS image.B . Load the hardware test (HQIP) image.C . Execute the CLI command execute formatlogdisk.D . Select the format boot device option from the BIOS menu.View AnswerAnswer: D
Which statement regarding the firewall policy authentication timeout is true?
Which statement regarding the firewall policy authentication timeout is true?A . It is an idle timeout. The FortiGate considers a user to be “idle” if it does not see any packets coming from the user’s source IC . It is a hard timeout. The FortiGate removes the temporary policy for...
Why did the FortiGate drop the packet?
Examine this output from a debug flow: Why did the FortiGate drop the packet?A . The next-hop IP address is unreachable.B . It failed the RPF check.C . It matched an explicitly configured firewall policy with the action DENE . It matched the default implicit firewall policy.View AnswerAnswer: D Explanation:...
