- All Exams Instant Download
Which three pieces of Information will be Included in me sniffer output?
An administrator is running the following sniffer command: diagnose aniffer packer any "host 192.168.2.12" 5 Which three pieces of Information will be Included in me sniffer output? {Choose three.)A . Interface nameB . Packet payloadC . Ethernet headerD . IP headerE . Application headerView AnswerAnswer: ABC
What is a possible reason for this?
Examine the IPS sensor configuration shown in the exhibit, and then answer the question below. An administrator has configured the WINDOWS_SERVERS IPS sensor in an attempt to determine whether the influx of HTTPS traffic is an attack attempt or not. After applying the IPS sensor, FortiGate is still not generating...
Which CLI command will display sessions both from client to the proxy and from the proxy to the servers?
Which CLI command will display sessions both from client to the proxy and from the proxy to the servers?A . diagnose wad session listB . diagnose wad session list | grep hook-pre&&hook-outC . diagnose wad session list | grep hook=pre&&hook=outD . diagnose wad session list | grep "hook=pre"&"hook=out"View AnswerAnswer: D
Which statement is correct If option 5 was used with the IPS diagnostic command and the outcome was a decrease in the CPU usage?
Refer to the exhibit. Examine the intrusion prevention system (IPS) diagnostic command. Which statement is correct If option 5 was used with the IPS diagnostic command and the outcome was a decrease in the CPU usage?A . The IPS engine was inspecting high volume of traffic.B . The IPS engine...
Which additional best practice can an administrator implement?
An administrator has configured two-factor authentication to strengthen SSL VPN access. Which additional best practice can an administrator implement?A . Configure Source IP Pools.B . Configure split tunneling in tunnel mode.C . Configure different SSL VPN realms.D . Configure host check.View AnswerAnswer: D
What two changes can the administrator make to resolve the issue without affecting services running through FortiGate?
Consider the topology: Application on a Windows machine <--{SSL VPN} -->FGT--> Telnet to Linux server. An administrator is investigating a problem where an application establishes a Telnet session to a Linux server over the SSL VPN through FortiGate and the idle session times out after about 90 minutes. The administrator...
Which interface will be selected as an outgoing interface?
Refer to the exhibit. The exhibit contains the configuration for an SD-WAN Performance SLA, as well as the output of diagnose sys virtual-wan-link health-check. Which interface will be selected as an outgoing interface?A . port2B . port4C . port3D . port1View AnswerAnswer: C
What should the administrator do next to troubleshoot the problem?
Refer to the exhibit. In the network shown in the exhibit, the web client cannot connect to the HTTP web server. The administrator runs the FortiGate built-in sniffer and gets the output as shown in the exhibit. What should the administrator do next to troubleshoot the problem?A . Run a...
Based on the raw logs shown in the exhibit, which statement is correct?
Refer to the web filter raw logs. Based on the raw logs shown in the exhibit, which statement is correct?A . Social networking web filter category is configured with the action set to authenticate.B . The action on firewall policy ID 1 is set to warning.C . Access to the...
Which two statements are true?
Refer to the exhibit. The Root and To_Internet VDOMs are configured in NAT mode. The DMZ and Local VDOMs are configured in transparent mode. The Root VDOM is the management VDOM. The To_Internet VDOM allows LAN users to access internet. The To_lnternet VDOM is the only VDOM with internet access...
