Fortinet NSE7_SDW-6.4 Fortinet NSE 7 – SD-WAN 6.4 Online Training
Fortinet NSE7_SDW-6.4 Online Training
The questions for NSE7_SDW-6.4 were last updated at Jan 02,2025.
- Exam Code: NSE7_SDW-6.4
- Exam Name: Fortinet NSE 7 - SD-WAN 6.4
- Certification Provider: Fortinet
- Latest update: Jan 02,2025
Which three parameters are available to configure SD-WAN rules? (Choose three.)
- A . Application signatures
- B . Type of physical link connection
- C . URL categories
- D . Source and destination IP address
- E . Internet service database (ISDB) address object
A,D,E
Explanation:
SD-WAN 6.4.5 Guide Page 76. https://docs.fortinet.com/document/fortigate/7.2.1/administration-guide/22371/sd-wan-rules-best-quality
Refer to the exhibit.
What must you configure to enable ADVPN?
- A . On the hub VPN, only the device needs additional phase one sett
- B . ADVPN should only be enabled on unmanaged FortiGate devices.
- C . Each VPN device has a unique pre-shared key configured separately on phase one
- D . The protected subnets should be set to address object to all (0.0 .0. 0/0).
D
Explanation:
SD-WAN 6.4.5 Study Guide. pg 210
What are the two minimum configuration requirements for an outgoing interface to be selected once the SD-WAN logical interface is enabled? (Choose two)
- A . Specify outgoing interface routing cost.
- B . Configure SD-WAN rules interface preference.
- C . Select SD-WAN balancing strategy.
- D . Specify incoming interfaces in SD-WAN rules.
Which two statements about SLA targets and SD-WAN rules are true? (Choose two.)
- A . Member metrics are measured only if an SLA target is configured.
- B . SLA targets are used only by SD-WAN rules that are configured with Lowest Cost (SLA) or Maximize Bandwidth (SLA) as strategy.
- C . When configuring an SD-WAN rule, you can select multiple SLA targets of the same performance SLA.
- D . SD-WAN rules use SLA targets to check if the preferred members meet the SLA requirements.
Refer to the exhibit.
Which statement about the command route-tag in the SD-WAN rule is true?
- A . It enables the SD-WAN rule to load balance and assign traffic with a route tag
- B . It tags each route and references the tag in the routing table.
- C . It uses route tags for a BGP community and assigns the SD-WAN rules with same tag.
- D . It ensures route tags match the SD-WAN rule based on the rule order
Refer to exhibits.
Exhibit A shows the source NAT global setting and exhibit B shows the routing table on FortiGate.
Based on the exhibits, which two statements about increasing the port2 interface priority to 20 are true? (Choose two.)
- A . All the existing sessions that do not use SNAT will be flushed and routed through port1.
- B . All the existing sessions will continue to use port2, and new sessions will use port1.
- C . All the existing sessions using SNAT will be flushed and routed through port1.
- D . All the existing sessions will be blocked from using port1 and port2.
Refer to exhibits.
Exhibit A.
Exhibit B.
Exhibit A, which shows the SD-WAN performance SLA and exhibit B shows the health of the participating SD-WAN members.
Based on the exhibits, which statement is correct?
- A . The dead member interface stays unavailable until an administrator manually brings the interface back.
- B . The SLA state of port2 has exceeded three consecutive unanswered requests from the SLA server.
- C . Port2 needs to wait 500 milliseconds to change the status from alive to dead.
- D . Check interval is the time to wait before a packet sent by a member interface considered as lost.
Refer to exhibits.
Exhibit A shows the SD-WAN rules and exhibit B shows the traffic logs. The SD-WAN traffic logs reflect how FortiGate processed traffic.
Which two statements about how the configured SD-WAN rules are processing traffic are true? (Choose two.)
- A . The implicit rule overrides all other rules because parameters widely cover sources and destinations.
- B . SD-WAN rules are evaluated in the same way as firewall policies: from top to bottom.
- C . The All_Access_Rules rule load balances Vimeo application traffic among SD-WAN member interfaces.
- D . The initial session of an application goes through a learning phase in order to apply the correct rule.
Refer to exhibits.
Exhibit A shows the performance SLA exhibit B shows the SD-WAN diagnostics output.
Based on the exhibits, which statement is correct?
- A . Both SD-WAN member interfaces have used separate SLA targets.
- B . The SLA state of port1 is dead after five unanswered requests by the SLA servers.
- C . Port1 became dead 1ecause no traffic was offload through the egress of port1.
- D . SD-WAN member interfaces are affected by the SLA state of the inactive interface
B
Explanation:
SD-WAN_6.4_Study_Guide page 57
Which diagnostic command can you use to show interface-specific SLA logs for the last 10 minutes?
- A . diagnose sys sdwan log
- B . diagnose sys sdwan health-check
- C . diagnose sys sdwan intf-sla-log
- D . diagnose sys sdwan sla-log
D
Explanation:
diagnose sys sdwan intf-sla-log -> shows only bandwidth utilization diagnose sys sdwan sla-log -> shows packet-loss, latency, jitter, MOS
Latest NSE7_SDW-6.4 Dumps Valid Version with 35 Q&As
Latest And Valid Q&A | Instant Download | Once Fail, Full Refund
