- All Exams Instant Download
What is the purpose of an internal segmentation firewall (ISFW)?
What is the purpose of an internal segmentation firewall (ISFW)?A . It inspects incoming traffic to protect services in the corporate DMZ.B . It is the first line of defense at the network perimeter.C . It splits the network into multiple security segments to minimize the impact of breaches.D ....
Which two statements about this debug output are correct?
Refer to the exhibit, which contains partial output from an IKE real-time debug. Which two statements about this debug output are correct? (Choose two.)A . The remote gateway IP address is 10.0.0.1.B . The initiator provided remote as its IPsec peer ID.C . It shows a phase 1 negotiation.D ....
Based on the error displayed by the debug flow, which are valid reasons for this problem?
An administrator cannot connect to the GIU of a FortiGate unit with the IP address 10.0.1.254. The administrator runs the debug flow while attempting the connection using HTTP. The output of the debug flow is shown in the exhibit: Based on the error displayed by the debug flow, which are...
Which statement explains why the state of the 10.200.3.1 peer is Connect?
Refer to the exhibit, which shows the output of a BGP debug command. Which statement explains why the state of the 10.200.3.1 peer is Connect?A . The local router has a different AS number than the remote peer.B . The local router is receiving BGP keepalives from the remote peer,...
In which two states is a given session categorized as ephemeral? (Choose two.)
In which two states is a given session categorized as ephemeral? (Choose two.)A . A TCP session waiting for FIN ACKB . A UDP session with packets sent and receivedC . A UDP session with only one packet receivedD . A TCP session waiting for the SYN ACKView AnswerAnswer: C,D
If the priority on route ID 1 were changed from 5 to 20, what would happen to traffic matching that user’s session?
View the following FortiGate configuration. All traffic to the Internet currently egresses from port1. The exhibit shows partial session information for Internet traffic from a user on the internal network: If the priority on route ID 1 were changed from 5 to 20, what would happen to traffic matching that...
Which two conditions would prevent a static route from being added to the routing table? (Choose two.)
Which two conditions would prevent a static route from being added to the routing table? (Choose two.)A . There is another other route to the same destination, with a lower distance.B . The route has a lower priority value than another route to the same destination.C . The next-hop IP...
What step must the administrator take to resolve this issue?
An administrator has created a VPN community within VPN Manager on FortiManager. They also added gateways to the VPN community and are now trying to create firewall policies to permit traffic over the tunnel; however, the VPN interfaces are not listed as available options. What step must the administrator take...
Which of the following statements are true regarding the SIP session helper and the SIP application layer gateway (ALG)? (Choose three.)
Which of the following statements are true regarding the SIP session helper and the SIP application layer gateway (ALG)? (Choose three.)A . SIP session helper runs in the kernel; SIP ALG runs as a user space process.B . SIP ALG supports SIP HA failover; SIP helper does not.C . SIP...
Which of the following statements about the exhibit are true?
View the exhibit, which contains the output of a debug command, and then answer the question below. Which of the following statements about the exhibit are true? (Choose two.)A . In the network on port4, two OSPF routers are down.B . Port4 is connected to the OSPF backbone area.C ....
