- All Exams Instant Download
Which command will capture ESP traffic for the VPN named DialUp_0?
Refer to the exhibit, which contains the output of the diagnose vpn tunnel list. Which command will capture ESP traffic for the VPN named DialUp_0?A . diagnose sniffer packet any 'port 4500'B . diagnose sniffer packet any 'esp and host 10.200.3.2'C . diagnose sniffer packet any 'host 10.0.10.10'D . diagnose...
Which of the following statements is true regarding this output?
View the exhibit, which contains the output of a real-time debug, and then answer the question below. Which of the following statements is true regarding this output? (Choose two.)A . This web request was inspected using the root web filter profile.B . FortiGate found the requested URL in its local...
When investigating FortiGuard connectivity issues, which of the following is a valid troubleshooting step?
When investigating FortiGuard connectivity issues, which of the following is a valid troubleshooting step?A . Verify management VDOM's internet access.B . Verify DNS requests are being proxied if auto-update tunneling is enabled.C . Use the FortiGuard real-time debug command to verify rating requests.D . Configure a virtual IP to forward...
Why didn’t the tunnel come up?
Examine the partial output from the IKE real time debug shown in the exhibit; then answer the question below. Why didn’t the tunnel come up?A . IKE mode configuration is not enabled in the remote IPsec gateway.B . The remote gateway’s Phase-2 configuration does not match the local gateway’s phase-2...
When investigating FortiGuard connectivity issues, which action is a valid troubleshooting step?
When investigating FortiGuard connectivity issues, which action is a valid troubleshooting step?A . Configure a virtual IP to forward port 443 to the FortiGate external IP.B . Verify management VDOM internet access.C . Use the FortiGuard real-time debug command to verify rating requests.D . Verify that DNS requests are being...
Which action will FortiGate take if a user attempts to access www.dropbox.com, which is categorized as File Sharing and Storage?
Refer to the exhibit, which shows a partial web filter profile configuration. Which action will FortiGate take if a user attempts to access www.dropbox.com, which is categorized as File Sharing and Storage?A . FortiGate will block the connection, based on the FortiGuard category based filter configuration.B . FortiGate will block...
Which two statements about application layer test commands are true? (Choose two.)
Which two statements about application layer test commands are true? (Choose two.)A . They are used to filter real-time debugs.B . They display real-time application debugs.C . Some of them can be used to restart an application.D . Some of them display statistics and configuration information about a feature or...
In which two states is a given session categorized as ephemeral? (Choose two.)
In which two states is a given session categorized as ephemeral? (Choose two.)A . A TCP session waiting to complete the three-way handshake.B . A TCP session waiting for FIN ACK.C . A UDP session with packets sent and received.D . A UDP session with only one packet received.View AnswerAnswer:...
Which flag is added to a primary unit’s session to indicate that it has been synchronized to the secondary unit?
An administrator has enabled HA session synchronization in a HA cluster with two members. Which flag is added to a primary unit’s session to indicate that it has been synchronized to the secondary unit?A . redir.B . dirty.C . syncedD . nds.View AnswerAnswer: C
Which of the following troubleshooting steps is applicable when investigating antivirus and IPS update issues on FortiGate?
Which of the following troubleshooting steps is applicable when investigating antivirus and IPS update issues on FortiGate?A . Use the alternate service port 8888.B . Validate DNS resolution for update.fortiguard.net.C . Verify outbound ICMP connectivity.D . Use the diagnose debug rating command to check active servers.View AnswerAnswer: B
