Which CLI command allows administrators to troubleshoot Layer 2 issues, such as an IP address conflict?
Which CLI command allows administrators to troubleshoot Layer 2 issues, such as an IP address conflict?A . get system status B. get system performance status C. diagnose sys top D. get system arpView AnswerAnswer: D Explanation: "If you suspect that there is an IP address conflict, or that an IP...
Which two statements about FortiGate FSSO agentless polling mode are true? (Choose two.)
Which two statements about FortiGate FSSO agentless polling mode are true? (Choose two.)A . FortiGate uses the AD server as the collector agent. B. FortiGate uses the SMB protocol to read the event viewer logs from the DCs. C. FortiGate does not support workstation check . D. FortiGate directs the...
When configuring a firewall virtual wire pair policy, which following statement is true?
When configuring a firewall virtual wire pair policy, which following statement is true?A . Any number of virtual wire pairs can be included, as long as the policy traffic direction is the same. B. Only a single virtual wire pair can be included in each policy. C. Any number of...
In an explicit proxy setup, where is the authentication method and database configured?
In an explicit proxy setup, where is the authentication method and database configured?A . Proxy Policy B. Authentication Rule C. Firewall Policy D. Authentication schemeView AnswerAnswer: B
Which three statements are true regarding session-based authentication? (Choose three.)
Which three statements are true regarding session-based authentication? (Choose three.)A . HTTP sessions are treated as a single user. B. IP sessions from the same source IP address are treated as a single user. C. It can differentiate among multiple clients behind the same source IP address. D. It requires...
Which two settings can be separately configured per VDOM on a FortiGate device? (Choose two.)
Which two settings can be separately configured per VDOM on a FortiGate device? (Choose two.)A . System time B. FortiGuaid update servers C. Operating mode D. NGFW modeView AnswerAnswer: C,D Explanation: C: "Operating mode is per-VDOM setting. You can combine transparent mode VDOM's with NAT mode VDOMs on the same...
Which three pieces of information are included in the sniffer output?
Refer to the exhibit. An administrator is running a sniffer command as shown in the exhibit. Which three pieces of information are included in the sniffer output? (Choose three.)A . Interface name B. Ethernet header C. IP header D. Application header E. Packet payloadView AnswerAnswer: A,C,E Explanation: Reference: https://kb.fortinet.com/kb/documentLink .do?externalID=11186...
Which two key configuration changes are needed on FortiGate to meet the design requirements?
A network administrator wants to set up redundant IPsec VPN tunnels on FortiGate by using two IPsec VPN tunnels and static routes. * All traffic must be routed through the primary tunnel when both tunnels are up * The secondary tunnel must be used only if the primary tunnel goes...
Which IP address will be used to source NAT the internet traffic coming from a workstation with the IP address 10.0.1.10?
Refer to the exhibit. The exhibit contains a network diagram, virtual IP, IP pool, and firewall policies configuration. The WAN (port1) interface has the IP address 10.200. 1. 1/24. The LAN (port3) interface has the IP address 10 .0.1.254. /24. The first firewall policy has NAT enabled using IP Pool....
Which two statements are true?
Refer to the exhibit. The exhibit displays the output of the CLI command: diagnose sys ha dump-by vcluster. Which two statements are true? (Choose two.)A . FortiGate SN FGVM010000065036 HA uptime has been reset. B. FortiGate devices are not in sync because one device is down. C. FortiGate SN FGVM010000064692...