What two concisions can you draw from the corresponding FortiGate configuration?

NSE7_EFW-7.2 V3 0 Comments

Exhibit.

Refer to the exhibit, which shows a partial touting table

What two concisions can you draw from the corresponding FortiGate configuration? (Choose two.)
A . IPSec Tunnel aggregation is configured
B . net-device is enabled in the tunnel IPSec phase 1 configuration
C . OSPI is configured to run over IPSec.
D . add-route is disabled in the tunnel IPSec phase 1 configuration.

Answer: B, C

Explanation:

From the partial routing table in the exhibit, here are two conclusions that can be drawn regarding the FortiGate configuration:

net-device is enabled in the tunnel IPSec phase 1 configuration.

The routing table shows multiple entries for tunnel interfaces (e.g., tunnel 0 and tunnel 1). This typically indicates that each IPSec tunnel has a corresponding interface in the FortiGate configuration, which is characteristic of the net-device feature being enabled in the IPSec phase 1 configuration.

OSPF is configured to run over IPSec.

The routes with the protocol "O" are OSPF routes. Given that OSPF routes appear for IPs that are reachable through tunnel interfaces, it suggests that OSPF is running over these IPSec tunnels, which is likely used for dynamic routing over the VPN.

Latest NSE7_EFW-7.2 Dumps Valid Version with 163 Q&As

Latest And Valid Q&A | Instant Download | Once Fail, Full Refund

Instant Download NSE7_EFW-7.2 PDF     NSE7_EFW-7.2 Questions Online Training
Subscribe
Notify of
guest
0 Comments
Inline Feedbacks
View all comments