Why does FortiGate Keep TCP sessions in the session table for several seconds, even after both sides (client and server) have terminated the session?
A . To allow for out-of-order packets that could arrive after the FIN/ACK packets
B . To finish any inspection operations
C . To remove the NAT operation
D . To generate logs
Answer: A
Explanation:
TCP provides the ability for one end of a connection to terminate its output while still receiving data from the other end. This is called a half-close. FortiGate unit implements a specific timer before removing an entry in the firewall session table.
Latest NSE4_FGT-7.0 Dumps Valid Version with 172 Q&As
Latest And Valid Q&A | Instant Download | Once Fail, Full Refund