Review the IPsec diagnostics output of the command diagnose vpn tunnel list shown in the exhibit below.

Review the IPsec diagnostics output of the command diagnose vpn tunnel list shown in the exhibit below. Which statements are correct regarding this output (Choose two.)A . The connecting client has been allocated address 172.20.1.1. B. In the Phase 1 settings, dead peer detection is enabled. C. The tunnel is...

August 18, 2023 No Comments READ MORE +

In which process states is it impossible to interrupt/kill a process? (Choose two.)

In which process states is it impossible to interrupt/kill a process? (Choose two.)A . S C Sleep B. R C Running C. D C Uninterruptable Sleep D. Z C ZombieView AnswerAnswer: CD

August 17, 2023 No Comments READ MORE +

Which header field can be used in a firewall policy for traffic matching?

Which header field can be used in a firewall policy for traffic matching?A . ICMP type and code. B. DSCP. C. TCP window size. D. TCP sequence number.View AnswerAnswer: A

August 17, 2023 No Comments READ MORE +

Which of the following statements correctly describes the static routing configuration provided?

Examine the static route configuration shown below; then answer the question following it. config router static edit 1 set dst 172.20.1.0 255.255.255.0 set device port1 set gateway 172.11.12.1 set distance 10 set weight 5 next edit 2 set dst 172.20.1.0 255.255.255.0 set blackhole enable set distance 5 set weight 10...

August 16, 2023 No Comments READ MORE +

Which two configuration steps are required in each FortiGate to achieve these objectives?

You are the administrator in charge of a point-to-point IPsec VPN between two FortiGate units using route based mode. Users from either side must be able to initiate new sessions with no restrictions. There is only 1 subnet at either end and the FortiGate already has a default route. Which...

August 16, 2023 No Comments READ MORE +

In a high availability cluster operating in active-active mode, which of the following correctly describes the path taken by the SYN packet of an HTTP session that is offloaded to a slave unit?

In a high availability cluster operating in active-active mode, which of the following correctly describes the path taken by the SYN packet of an HTTP session that is offloaded to a slave unit?A . Client - > slave FortiGate - > master FortiGate - > web server. B. Client -...

August 15, 2023 No Comments READ MORE +

Which statements are correct regarding an IPv6 over IPv4 IPsec configuration? (Choose two.)

Which statements are correct regarding an IPv6 over IPv4 IPsec configuration? (Choose two.)A . The source quick mode selector must be an IPv4 address. B. The destination quick mode selector must be an IPv6 address. C. The Local Gateway IP must be an IPv4 address. D. The remote gateway IP...

August 14, 2023 No Comments READ MORE +

What is the FortiGate password recovery process?

What is the FortiGate password recovery process?A . Interrupt boot sequence, modify the boot registry and reboot. After changing the password, reset the boot registry. B. Log in through the console port using the ''maintainer'' account within several seconds of physically power cycling the FortiGate. C. Hold down the CTRL...

August 14, 2023 No Comments READ MORE +

Given the information provided in the exhibits, which of the following statements are correct?

Two devices are in an HA cluster, the device hostnames are STUDENT and REMOTE. Exhibit A shows the command output of diagnose sys session stat for the STUDENT device. Exhibit B shows the command output of diagnose sys session stat for the REMOTE device. Exhibit A: Exhibit B: Given the...

August 13, 2023 No Comments READ MORE +

Which is not a FortiGate feature?

Which is not a FortiGate feature?A . Database auditing B. Intrusion prevention C. Web filtering D. Application controlView AnswerAnswer: A

August 13, 2023 No Comments READ MORE +