- All Exams Instant Download
What two changes can the administrator make to resolve the issue without affecting any existing services running through FortiGate?
What two changes can the administrator make to resolve the issue without affecting any existing services running through FortiGate? (Choose two.)A . Create a new firewall policy with the new HTTP service and place it above the existing HTTP policy. B. Create a new service object for HTTP service and...
How does the FortiGate handle web proxy traffic coming from the IP address 10.2.1.200 that requires authorization?
Examine this FortiGate configuration: How does the FortiGate handle web proxy traffic coming from the IP address 10.2.1.200 that requires authorization?A . It always authorizes the traffic without requiring authentication. B. It drops the traffic. C. It authenticates the traffic using the authentication scheme SCHEME2. D. It authenticates the traffic...
Which part of the policy configuration must you change to resolve the issue?
Refer to the exhibits. The exhibits show the SSL and authentication policy (Exhibit A) and the security policy (Exhibit B) for Facebook. Users are given access to the Facebook web application. They can play video content hosted on Facebook but they are unable to leave reactions on videos or other...
Which of the following statements are correct?
View the exhibit. Which of the following statements are correct? (Choose two.)A . This setup requires at least two firewall policies with the action set to IPsec. B. Dead peer detection must be disabled to support this type of IPsec setup. C. The TunnelB route is the primary route for...
Which CLI command will display sessions both from client to the proxy and from the proxy to the servers?
Which CLI command will display sessions both from client to the proxy and from the proxy to the servers?A . diagnose wad session list B. diagnose wad session list | grep hook-pre&&hook-out C. diagnose wad session list | grep hook=pre&&hook=out D. diagnose wad session list | grep "hook=pre"&"hook=out"View AnswerAnswer: A
Which two statements about FortiGate FSSO agentless polling mode are true? (Choose two.)
Which two statements about FortiGate FSSO agentless polling mode are true? (Choose two.)A . FortiGate uses the AD server as the collector agent. B. FortiGate uses the SMB protocol to read the event viewer logs from the DCs. C. FortiGate does not support workstation check . D. FortiGate directs the...
Based on the exhibit, which configuration change can the administrator make to allow Twitter while blocking all other social networking sites?
Refer to exhibit. An administrator configured the web filtering profile shown in the exhibit to block access to all social networking sites except Twitter. However, when users try to access twitter.com, they are redirected to a FortiGuard web filtering block page. Based on the exhibit, which configuration change can the...
Which IP address will be used to source NAT the internet traffic coming from a workstation with the IP address 10.0.1.10?
Refer to the exhibit. The exhibit contains a network diagram, virtual IP, IP pool, and firewall policies configuration. The WAN (port1) interface has the IP address 10.200. 1. 1/24. The LAN (port3) interface has the IP address 10 .0.1.254. /24. The first firewall policy has NAT enabled using IP Pool....
What order must FortiGate use when the web filter profile has features enabled, such as safe search?
The HTTP inspection process in web filtering follows a specific order when multiple features are enabled in the web filter profile. What order must FortiGate use when the web filter profile has features enabled, such as safe search?A . DNS-based web filter and proxy-based web filter B. Static URL filter,...
Which two policies must be configured to allow traffic on a policy-based next-generation firewall (NGFW) FortiGate?
CORRECT TEXT Which two policies must be configured to allow traffic on a policy-based next-generation firewall (NGFW) FortiGate? (Choose two.)A . Security policy B. SSL inspection and authentication policyView AnswerAnswer: AB
