What could be the reason?

NSE7_EFW-7.2 V5 0 Comments

After enabling IPS you receive feedback about traffic being dropped.

What could be the reason?
A . Np-accel-mode is set to enable
B . Traffic-submit is set to disable
C . IPS is configured to monitor
D . Fail-open is set to disable

Answer: D

Explanation:

Fail-open is a feature that allows traffic to pass through the IPS sensor without inspection when the sensor fails or is overloaded. If fail-open is set to disable, traffic will be dropped in such scenarios1.

Reference: = IPS | FortiGate / FortiOS 7.2.3 – Fortinet Documentation

When IPS (Intrusion Prevention System) is configured, if fail-open is set to disable, it means that if the IPS engine fails, traffic will not be allowed to pass through, which can result in traffic being dropped (D). This is in contrast to a fail-open setting, which would allow traffic to bypass the IPS engine if it is not operational.

Latest NSE7_EFW-7.2 Dumps Valid Version with 163 Q&As

Latest And Valid Q&A | Instant Download | Once Fail, Full Refund

Instant Download NSE7_EFW-7.2 PDF     NSE7_EFW-7.2 Questions Online Training
Subscribe
Notify of
guest
0 Comments
Inline Feedbacks
View all comments