Examine the network diagram and the existing FGTI routing table shown in the exhibit, and then answer the following question:
Answer : C
Which configuration objects can be selected for the Source field of a firewall policy? (Choose two.)
Answer : BC
View the exhibit.
Answer : C
NGFW mode allows policy-based configuration for most inspection rules. Which security profile"™s configuration does not change when you enable policy-based inspection?
Answer : C
During the digital verification process, comparing the original and fresh hash results satisfies which security requirement?
Answer : D
An administration wants to throttle the total volume of SMTP sessions to their email server. Which of the following DoS sensors can be used to achieve this?
Answer : A
Why must you use aggressive mode when a local FortiGate IPSec gateway hosts multiple dialup tunnels?
Answer : A
Examine this output from a debug flow:
Answer : D
View the exhibit:
Answer : C
Which of the following statements about policy-based IPsec tunnels are true? (Choose two.)
Answer : AB
An employee connects to the https://example.com on the Internet using a web browser. The web server"™s certificate was signed by a private internal CA. The
FortiGate that is inspecting this traffic is configured for full SSL inspection.
This exhibit shows the configuration settings for the SSL/SSH inspection profile that is applied to the policy that is invoked in this instance. All other settings are set to defaults. No certificates have been imported into FortiGate. View the exhibit and answer the question that follows.
Answer : A
Examine this FortiGate configuration:
Answer : C
Examine the exhibit, which shows the output of a web filtering real time debug.
Answer : D
Which of the following statements are best practices for troubleshooting FSSO? (Choose two.)
Answer : AD
When override is enabled, which of the following shows the process and selection criteria that are used to elect the primary FortiGate in an HA cluster?
Answer : C
Have any questions or issues ? Please dont hesitate to contact us