Fortinet FCSS_EFW_AD-7.4 FCSS – Enterprise Firewall 7.4 Administrator Online Training
Fortinet FCSS_EFW_AD-7.4 Online Training
The questions for FCSS_EFW_AD-7.4 were last updated at Feb 22,2025.
- Exam Code: FCSS_EFW_AD-7.4
- Exam Name: FCSS - Enterprise Firewall 7.4 Administrator
- Certification Provider: Fortinet
- Latest update: Feb 22,2025
Examine the partial output from the IKE real time debug shown in the exhibit; then answer the question below.
Why didn’t the tunnel come up?
- A . IKE mode configuration is not enabled in the remote IPsec gateway.
- B . The remote gateway’s Phase-2 configuration does not match the local gateway’s phase-2 configuration.
- C . The remote gateway’s Phase-1 configuration does not match the local gateway’s phase-1 configuration.
- D . One IPsec gateway is using main mode, while the other IPsec gateway is using aggressive mode.
When investigating FortiGuard connectivity issues, which of the following is a valid troubleshooting step?
- A . Verify management VDOM’s internet access.
- B . Verify DNS requests are being proxied if auto-update tunneling is enabled.
- C . Use the FortiGuard real-time debug command to verify rating requests.
- D . Configure a virtual IP to forward port 443 to FortiGate’s external IP.
Refer to the exhibit, which shows the output of a diagnose command
What can you conclude from the RTT value?
- A . Its value is incremented with each packet lost.
- B . Its initial value is statically set to 10.
- C . It determines which FortiGuard server is used for license validation.
- D . Its value represents the time it takes to receive a response after a rating request is sent to a particular server.
Examine the following routing table and BGP configuration; then answer the question below.
The BGP connection is up, but the local peer is NOT advertising the prefix 192.168.1.0/24.
Which configuration change will make the local peer advertise this prefix?
- A . Enable the redistribution of connected routers into BGP.
- B . Enable the redistribution of static routers into BGP.
- C . Disable the setting network-import-check.
- D . Enable the setting ebgp-multipath.
What configuration changes can reduce the memory utilization in a FortiGate? (Choose two.)
- A . Reduce the session time to live.
- B . Increase the TCP session timers.
- C . Increase the FortiGuard cache time to live.
- D . Reduce the maximum file size to inspect.
Refer to the exhibit, which shows the output of a web filtering diagnose command.
Which configuration change would result in non-zero results in the cache statistics section?
- A . set server-type rating under config system central-management
- B . set webfilter-cache enable under config system fortiguard
- C . set webfilter-force-off disable under config system fortiguard
- D . set ngfw-mode policy-based under config system settings
Refer to the exhibit, which contains a partial routing table.
Assuming all the appropriate firewall policies are configured, which two pings will FortiGate route? (Choose two.)
- A . Source IP address 10.1.0.24, Destination IP address 10.72.3.20.
- B . Source IP address 10.72.3.52, Destination IP address 10.1.0.254.
- C . Source IP address 10.72.3.27, Destination IP address 10.1.0.52.
- D . Source IP address 10.73.9.10, Destination IP address 10.72.3.15.
Which three conditions are required for two FortiGate devices to form an OSP adjacency? (Choose three.)
- A . OSPF costs match
- B . OSPF peer IDs match
- C . Hello and dead intervals match
- D . OSPF IP MTUs match
- E . IP addresses are in the same subnet
Refer to the exhibit, which shows partial outputs from two routing debug commands.
Which change must an administrator make on FortiGate to route web traffic from internal users to the internet, using ECMP?
- A . Set the priority of the static default route using port1 to 10.
- B . Set the priority of the static default route using port2 to 1.
- C . Set preserve-session-route to enable.
- D . Set snat-route-change to enable.
Examine the partial output from two web filter debug commands; then answer the question below:
Based on the above outputs, which is the FortiGuard web filter category for the web site www.fgt99.com?
- A . Finance and banking
- B . General organization.
- C . Business.
- D . Information technology.
Latest FCSS_EFW_AD-7.4 Dumps Valid Version with 210 Q&As
Latest And Valid Q&A | Instant Download | Once Fail, Full Refund
