Which statement about DLP on FortiGate is true?

Which statement about DLP on FortiGate is true?A . It can archive files and messages.B . It can be applied to a firewall policy in a flow-based VDOMC . Traffic shaping can be applied to DLP sensors.D . Files can be sent to FortiSandbox for detecting DLP threats.View AnswerAnswer: A

November 13, 2019 No Comments READ MORE +

Which of the following statements about NTLM authentication are correct? (Choose two.)

Which of the following statements about NTLM authentication are correct? (Choose two.)A . It is useful when users log in to DCs that are not monitored by a collector agent.B . It takes over as the primary authentication method when configured alongside FSSD . Multi-domain environments require DC agents on...

November 12, 2019 No Comments READ MORE +

Which of the following is the expected FortiGate behavior regarding these two routes to the same destination?

Examine the two static routes shown in the exhibit, then answer title following question. Which of the following is the expected FortiGate behavior regarding these two routes to the same destination?A . FortiGate will load balance all traffic across both routes.B . FortiGate will use the port1 route as the...

November 12, 2019 No Comments READ MORE +

A FortiGate is operating in NAT mode and configured with two virtual LAN (VLAN) sub interfaces added to the physical interface.

A FortiGate is operating in NAT mode and configured with two virtual LAN (VLAN) sub interfaces added to the physical interface. Which statements about the VLAN sub interfaces can have the same VLAND ID, only if they have IP addresses in different subnets.A . The two VLAN sub interfaces can...

November 12, 2019 No Comments READ MORE +

Which of the following statements about central NAT are true? (Choose two.)

Which of the following statements about central NAT are true? (Choose two.)A . IP tool references must be removed from existing firewall policies before enabling central NAC . Central NAT can be enabled or disabled from the CLI only.D . Source NAT, using central NAT, requires at least one central...

November 11, 2019 No Comments READ MORE +

Which one of the following routes is the best candidate route for FGT1 to route traffic from the Workstation to the Web server?

Examine the network diagram shown in the exhibit, then answer the following question: Which one of the following routes is the best candidate route for FGT1 to route traffic from the Workstation to the Web server? A) B) C) D) A . Option AB . Option BC . Option CD...

November 10, 2019 No Comments READ MORE +

Which statement about the exhibit is true?

View the exhibit: Which statement about the exhibit is true? (Choose two.)A . Broadcast traffic received in port1-VLAN10 will not be forwarded to port2-VLAN10.B . port-VLAN1 is the native VLAN for the port1 physical interface.C . port1-VLAN10 and port2-VLAN10 can be assigned to different VDOMs.D . Traffic between port1-VLAN1 and...

November 10, 2019 No Comments READ MORE +

When browsing to an internal web server using a web-mode SSL VPN bookmark, which IP address is used as the source of the HTTP request?

When browsing to an internal web server using a web-mode SSL VPN bookmark, which IP address is used as the source of the HTTP request?A . remote user’s public IP addressB . The public IP address of the FortiGate device.C . The remote user’s virtual IP address.D . The internal...

November 6, 2019 No Comments READ MORE +

How does the FortiGate handle web proxy traffic coming from the IP address 10.2.1.200 that requires authorization?

Examine this FortiGate configuration: How does the FortiGate handle web proxy traffic coming from the IP address 10.2.1.200 that requires authorization?A . It always authorizes the traffic without requiring authentication.B . It drops the traffic.C . It authenticates the traffic using the authentication scheme SCHEME2.D . It authenticates the traffic...

November 6, 2019 No Comments READ MORE +

Why does FortiGate keep TCP sessions in the session table for some seconds even after both sides (client and server) have terminated the session?

Why does FortiGate keep TCP sessions in the session table for some seconds even after both sides (client and server) have terminated the session?A . To remove the NAT operation.B . To generate logsC . To finish any inspection operations.D . To allow for out-of-order packets that could arrive after...

November 4, 2019 No Comments READ MORE +