If the administrator knows that there is no NAT device located between both FortiGates, what command should the administrator execute?
An administrator wants to capture ESP traffic between two FortiGates using the built-in sniffer.
If the administrator knows that there is no NAT device located between both FortiGates, what command should the administrator execute?
A . diagnose sniffer packet any βudp port 500β
B . diagnose sniffer packet any βudp port 4500β
C . diagnose sniffer packet any βespβ
D . diagnose sniffer packet any βudp port 500 or udp port 4500β
Answer: C
Explanation:
Capture IKE Traffic without NAT:diagnose sniffer packet βhost and udp port 500ββββββββββββββββββββββββββββββββββββββ-Capture ESP Traffic without NAT:diagnose sniffer packet any βhost and espββββββββββββββββββββββββββββββββββββββ-Capture IKE and ESP with NAT-T:diagnose sniffer packet any βhost and (udp port 500 or udp port 4500)β
Latest NSE7_EFW-6.4 Dumps Valid Version with 102 Q&As
Latest And Valid Q&A | Instant Download | Once Fail, Full Refund