Fortinet NSE7_SDW-7.2 Fortinet NSE 7 – SD-WAN 7.2 Online Training
Fortinet NSE7_SDW-7.2 Online Training
The questions for NSE7_SDW-7.2 were last updated at Mar 04,2025.
- Exam Code: NSE7_SDW-7.2
- Exam Name: Fortinet NSE 7 - SD-WAN 7.2
- Certification Provider: Fortinet
- Latest update: Mar 04,2025
Refer to the exhibit.
Which configuration change is required if the responder FortiGate uses a dynamic routing protocol to exchange routes over IPsec?
- A . type must be set to static.
- B . mode-cfg must be enabled.
- C . exchange-interface-ip must be enabled.
- D . add-route must be disabled.
Which are two benefits of using CLI templates in FortiManager? (Choose two.)
- A . You can reference meta fields.
- B . You can configure interfaces as SD-WAN members without having to remove references first.
- C . You can configure FortiManager to sync local configuration changes made on the managed device,
to the CLI template. - D . You can configure advanced CLI settings.
Refer to the exhibit.
The device exchanges routes using IBGP.
Which two statements are correct about the IBGP configuration and routing information on the device? (Choose two.)
- A . Each BGP route is three hops away from the destination.
- B . ibgp-multipath is disabled.
- C . additional-path is enabled.
- D . You can run the get router info routing-table database command to display the additional paths.
Refer to the exhibit.
Based on the exhibit, which action does FortiGate take?
- A . FortiGate bounces port5 after it detects all SD-WAN members as dead.
- B . FortiGate fails over to the secondary device after it detects all SD-WAN members as dead.
- C . FortiGate brings up port5 after it detects all SD-WAN members as alive.
- D . FortiGate brings down port5 after it detects all SD-WAN members as dead.
What are two benefits of choosing packet duplication over FEC for data loss correction on noisy links? (Choose two.)
- A . Packet duplication can leverage multiple IPsec overlays for sending additional data.
- B . Packet duplication does not require a route to the destination.
- C . Packet duplication supports hardware offloading.
- D . Packet duplication uses smaller parity packets which results in less bandwidth consumption.
Refer to the exhibit.
The exhibit shows the SD-WAN rule status and configuration.
Based on the exhibit, which change in the measured packet loss will make T_INET_1_0 the new preferred member?
- A . When all three members have the same packet loss.
- B . When T_INET_0_0 has 4% packet loss.
- C . When T_INET_0_0 has 12% packet loss.
- D . When T_INET_1_0 has 4% packet loss.
What are two benefits of using the Internet service database (ISDB) in an SD-WAN rule? (Choose two.)
- A . The ISDB is dynamically updated and reduces administrative overhead.
- B . The ISDB requires application control to maintain signatures and perform load balancing.
- C . The ISDB applies rules to traffic from specific sources, based on application type.
- D . The ISDB contains the IP addresses and port ranges of well-known internet services.
Which statement about SD-WAN zones is true?
- A . An SD-WAN zone can contain only one type of interface.
- B . An SD-WAN zone can contain between 0 and 512 members.
- C . You cannot use an SD-WAN zone in static route definitions.
- D . You can configure up to 32 SD-WAN zones per VDOM.
Which two statements about the SD-WAN zone configuration are true? (Choose two.)
- A . The service-sla-tie-break setting enables you to configure preferred member selection based on the best route to the destination.
- B . You can delete the default zones.
- C . The default zones are virtual-wan-link and SASE.
- D . An SD-WAN member can belong to two or more zones.
Exhibit.
The exhibit shows the output of the command diagnose sys sdwan health-check status collected on a FortiGate device.
Which two statements are correct about the health check status on this FortiGate device? (Choose two.)
- A . The health-check VPN_PING orders the members according to the lowest jitter.
- B . The interface T_INET_1 missed one SLA target.
- C . There is no SLA criteria configured for the health-check Level3_DNS.
- D . The interface T_INET_0 missed three SLA targets.
Latest NSE7_SDW-7.2 Dumps Valid Version with 70 Q&As
Latest And Valid Q&A | Instant Download | Once Fail, Full Refund
