Which of the following statements are correct regarding application layer test commands?

Correct Answer for the Question – Which of the following statements are correct regarding application layer test commands? is given below Which of the following statements are correct regarding application layer test commands? (Choose two.) Some of them display statistics and configuration information about a feature or process. They are used to filter real-time debugs. They … Read more

Which of the following conditions must be met for a static route to be active in the routing table?

Correct Answer for the Question – Which of the following conditions must be met for a static route to be active in the routing table? is given below Which of the following conditions must be met for a static route to be active in the routing table? (Choose two.) The next-hop IP address is up. There … Read more

What configuration settings change the behavior for content-inspected traffic while FortiGate is in conserve mode?

Correct Answer for the Question – What configuration settings change the behavior for content-inspected traffic while FortiGate is in conserve mode? is given below What configuration settings change the behavior for content-inspected traffic while FortiGate is in conserve mode? (Choose two.) mem-failopen ips-failopen utm-failopen av-failopen Correct Answer The Correct Answer for this Question is ips-failopen av-failopen … Read more

What is the purpose of an internal segmentation firewall (ISFW)?

Correct Answer for the Question – What is the purpose of an internal segmentation firewall (ISFW)? is given below What is the purpose of an internal segmentation firewall (ISFW)? It is the first line of defense at the network perimeter. It inspects incoming traffic to protect services in the corporate DMZ. It is an all-in-one security … Read more

Which of the following statements about bulk configuration changes using FortiManager CLI scripts are correct?

Correct Answer for the Question – Which of the following statements about bulk configuration changes using FortiManager CLI scripts are correct? is given below Which of the following statements about bulk configuration changes using FortiManager CLI scripts are correct? (Choose two.) When executed on the All FortiGate in ADOM, changes are automatically installed without creating a … Read more

When using the SSL certificate inspection method to inspect HTTPS traffic, how does FortiGate filler web requests when the client browser does not provide the server name indication (SNI) extension ?

Correct Answer for the Question – When using the SSL certificate inspection method to inspect HTTPS traffic, how does FortiGate filler web requests when the client browser does not provide the server name indication (SNI) extension ? is given below When using the SSL certificate inspection method to inspect HTTPS traffic, how does FortiGate filler web … Read more

How does FortiManager handle FortiGuard requests from FortiGate devices, when it is configured as a local FDS?

Correct Answer for the Question – How does FortiManager handle FortiGuard requests from FortiGate devices, when it is configured as a local FDS? is given below How does FortiManager handle FortiGuard requests from FortiGate devices, when it is configured as a local FDS? FortiManager will respond to update requests only from a managed device. FortiManager can … Read more

What command should the administrator execute?

Correct Answer for the Question – What command should the administrator execute? is given below An administrator wants to capture ESP traffic between two FortiGates using the built-in sniffer. If the administrator knows that there is no NAT device located between both FortiGates, what command should the administrator execute? diagnose sniffer packet any ‘esp’ diagnose sniffer … Read more

Which one of the following statements about this command is true?

Correct Answer for the Question – Which one of the following statements about this command is true? is given below An administrator has configured two FortiGate devices for an HA cluster. While testing the HA failover, the administrator noticed that some of the switches in the network continue to send traffic to the former primary unit. … Read more

What does the dirty flag mean in a FortiGate session?

Correct Answer for the Question – What does the dirty flag mean in a FortiGate session? is given below What does the dirty flag mean in a FortiGate session? The session must be removed from the former primary unit after an HA failover. Traffic has been identified as from an application that is not allowed. The … Read more