- All Exams Instant Download
Given the exhibit, which two statements below about VDOM behavior are correct?
Refer to the exhibit. A customer has deployed a FortiGate 300E with virtual domains (VDOMs) enabled in the multi-VDOM mode. There are three VDOMs: Root is for management and internet access, while VDOM 1 and VDOM 2 are used for segregating internal traffic. AccountVInk and SalesVInk are standard VDOM links...
Which action achieves the requirement in this scenario?
You are deploying a FortiExtender (FEX) on a FortiGate-60F. The FEX will be managed by the FortiGate. You anticipate high utilization. The requirement is to minimize the overhead on the device for WAN traffic. Which action achieves the requirement in this scenario? A. Add a switch between the FortiGate and...
Based on the information given in the exhibits, what must be done to fix this?
Refer to the exhibits. An administrator has configured a FortiGate and Forti Authenticator for two-factor authentication with FortiToken push notifications for their SSL VPN login. Upon initial review of the setup, the administrator has discovered that the customers can manually type in their two-factor code and authenticate but push notifications...
Which two methods are supported for importing user defined Lookup Table Data into the FortiSIEM? (Choose two.)
Which two methods are supported for importing user defined Lookup Table Data into the FortiSIEM? (Choose two.)A . ReportB . FTPC . APID . SCPView AnswerAnswer: AC Explanation: FortiSIEM supports two methods for importing user defined Lookup Table Data: Report: You can import lookup table data from a report. This...
What is the Forward Error Correction behavior if the SD-WAN network traffic download is 500 Mbps and has 8% of packet loss in the environment?
Review the VPN configuration shown in the exhibit. What is the Forward Error Correction behavior if the SD-WAN network traffic download is 500 Mbps and has 8% of packet loss in the environment?A . 1 redundant packet for every 10 base packetsB . 3 redundant packet for every 5 base...
Based on this configuration, how long will it take for a failover to be detected by the secondary cluster member?
An HA topology is using the following configuration: Based on this configuration, how long will it take for a failover to be detected by the secondary cluster member?A . 600msB . 200msC . 300msD . 100msView AnswerAnswer: B Explanation: The HA heartbeat interval is 100ms, and the number of lost...
Given the information shown in the output, which two statements are correct?
Refer to the CLI output: Given the information shown in the output, which two statements are correct? (Choose two.)A . Geographical IP policies are enabled and evaluated after local techniques.B . Attackers can be blocked before they target the servers behind the FortiWeb.C . The IP Reputation feature has been...
In this scenario, which configuration change will meet this requirement?
Refer to the exhibit, which shows a Branch1 configuration and routing table. In the SD-WAN implicit rule, you do not want the traffic load balance for the overlay interface when all members are available. In this scenario, which configuration change will meet this requirement?A . Change the load-balance-mode to source-ip-based.B...
How should the initial connection be made?
Refer to the exhibit. You are deploying a FortiGate 6000F. The device should be directly connected to a switch. In the future, a new hardware module providing higher speed will be installed in the switch, and the connection to the FortiGate must be moved to this higher-speed port. You must...
Which two options can resolve this situation?
A retail customer with a FortiADC HA cluster load balancing five webservers in L7 Full NAT mode is receiving reports of users not able to access their website during a sale event. But for clients that were able to connect, the website works fine. CPU usage on the FortiADC and...
