Which the following events can trigger the election of a new primary unit in a HA cluster? (Choose two.)
Which the following events can trigger the election of a new primary unit in a HA cluster? (Choose two.)A . Primary unit stops sending HA heartbeat keepalives. B. The FortiGuard license for the primary unit is updated. C. One of the monitored interfaces in the primary unit is disconnected. D....
Which statement are true regarding the output in the exhibit?
Examine the output of the 'diagnose debug rating' command shown in the exhibit; then answer the question below. Which statement are true regarding the output in the exhibit? (Choose two.)A . There are three FortiGuard servers that are not responding to the queries sent by the FortiGate. B. The TZ...
Why?
View the exhibit, which contains a screenshot of some phase-1 settings, and then answer the question below. The VPN is up, and DPD packets are being exchanged between both IPsec gateways; however, traffic cannot pass through the tunnel. To diagnose, the administrator enters these CLI commands: However, the IKE real...
Based on the output, which two statements are correct?
Refer to the exhibit, which contains the partial output of a diagnose command. Based on the output, which two statements are correct? (Choose two.)A . Anti-replay is enabled B. The remote gateway IP is 10.200.4.1. C. DPD is disabled. D. Quick mode selectors are disabled.View AnswerAnswer: A,B
Which IP addresses are included in the output of this command?
Examine the output of the ‘diagnose ips anomaly list’ command shown in the exhibit; then answer the question below. Which IP addresses are included in the output of this command?A . Those whose traffic matches a DoS policy. B. Those whose traffic matches an IPS sensor. C. Those whose traffic...
How does FortiManager handle FortiGuard requests from FortiGate devices, when it is configured as a local FDS?
How does FortiManager handle FortiGuard requests from FortiGate devices, when it is configured as a local FDS?A . FortiManager can download and maintain local copies of FortiGuard databases. B. FortiManager supports only FortiGuard push to managed devices. C. FortiManager will respond to update requests only if they originate from a...
Why?
Refer to the exhibit, which contains a screenshot of some phase 1 settings. The VPN is not up. To diagnose the issue, the administrator enters the following CLI commands to an SSH session on FortiGate: diagnose vpn ike log-filter dst-addr4 10.0.10.1 diagnose debug application ike -1 However, the IKE real-time...
Which two statements about the Security Fabric are true? (Choose two.)
Which two statements about the Security Fabric are true? (Choose two.)A . Only the root FortiGate collects network topology information and forwards it to FortiAnalyzer. B. Only the root FortiGate sends logs to FortiAnalyzer. C. Only FortiGate devices with fabric-object-unification set to default will receive and synchronize global CMDB objects...
Which one of the following statements is true regarding FortiGate’s inspection of this session?
View the exhibit, which contains an entry in the session table, and then answer the question below. Which one of the following statements is true regarding FortiGate’s inspection of this session?A . FortiGate applied proxy-based inspection. B. FortiGate forwarded this session without any inspection. C. FortiGate applied flow-based inspection. D....
Which outbound interface will FortiGate use to route web traffic from internal users to the Internet?
View these partial outputs from two routing debug commands: Which outbound interface will FortiGate use to route web traffic from internal users to the Internet?A . Both port1 and port2 B. port3 C. port1 D. port2View AnswerAnswer: C