Scribd Logo
Încărcați

Bine ați venit la Scribd!

  • FortiGate Essentials Quiz #1 PDF

    Încărcat de

    pyxpdrlviqddcbyiju
    521 vizualizări4 pagini

    Titlu original

    FortiGate Essentials Quiz #1.pdf

    Drepturi de autor

    © © All Rights Reserved

    Formate disponibile

    PDF, TXT sau citiți online pe Scribd

    Vi se pare util acest document?

    Este necorespunzător acest conținut?

    Raportați acest document

    Drepturi de autor:

    © All Rights Reserved
    Descărcați ca PDF, TXT sau citiți online pe Scribd
    Indicator pentru conținut neadecvat
    521 vizualizări4 pagini

    FortiGate Essentials Quiz #1 PDF

    Încărcat de

    pyxpdrlviqddcbyiju

    Drepturi de autor:

    © All Rights Reserved
    Descărcați ca PDF, TXT sau citiți online pe Scribd
    Indicator pentru conținut neadecvat
    din 4

     FortiGate Essentials 6.

    Started on Sunday, April 26, 2020, 2:38 PM


    State Finished
    Completed on Sunday, April 26, 2020, 2:53 PM
    Time taken 14 mins 44 secs
    Points 14/15
    Grade 93 out of 100

    Question 1 Which NAT mode is supported by a VDOM configured as NGFW Policy-based mode?
    Correct

    1 points out of 1 Select one:


    IP range

    Firewall NAT

    IP pool

    Central SNAT 

    Question 2 Which three actions are valid for static URL filtering? (Choose three.)
    Correct

    1 points out of 1 Select one or more:


    Allow 

    Exempt 

    Shape

    Block 

    Warning

    Question 3 Which two modes are FortiGate operation modes? (Choose two.)
    Correct

    1 points out of 1 Select one or more:


    Database

    Transparent 

    Bridge

    NAT 

    Question 4 Which security processor unit (SPU) is optimized for entry-level FortiGate models?
    Correct

    1 points out of 1 Select one:


    Content processor

    System-on-a-chip processor 

    Security processor

    Network processor
    Question 5 Which three settings and protocols can be used to provide secure and restrictive administrative access to FortiGate? (Choose three.)
    Correct

    1 points out of 1 Select one or more:


    FortiTelemetry

    SSH 

    Trusted host 

    Trusted authentication

    HTTPS 

    Question 6 Which inspection mode allows administrators to select the network applications from the firewall policy configuration?
    Correct

    1 points out of 1 Select one:


    Scanning

    Certificate-based

    NGFW Policy-based 

    Proxy

    Question 7 Which two statements about incoming and outgoing interfaces in firewall policies are true? (Choose two.)
    Correct

    1 points out of 1 Select one or more:


    Only the any interface can be chosen as an incoming interface.

    Multiple interfaces can be selected as incoming and outgoing interfaces. 

    An incoming interface is mandatory in a firewall policy, but an outgoing interface is optional.

    A zone can be chosen as the outgoing interface. 

    Question 8 An administrator needs to create a tunnel mode SSL-VPN to access an internal web server from the Internet. The web server is
    Correct connected to port1. The Internet is connected to port2. Both interfaces belong to the VDOM named Corporation.
    1 points out of 1  
    Which interface must be used as the source for the firewall policy that will allow this traffic?

    Select one:
    port1

    port2

    ssl.Corporation 
    ssl.root

    Question 9 What information can the client integrity check collect about applications running in SSL-VPN clients? (Choose two.)
    Correct

    1 points out of 1 Select one or more:


    Current software version 

    Use name

    Application-specific settings

    Signature updates 
    Question 10 Examine the exhibit showing a routing table.
    Correct

    1 points out of 1

    Which route will be selected when trying to reach 10.20.30.254?

    Select one:
    10.20.30.0/26 [10/0] via 172.20.168.254, port2

    0.0.0.0/0 [10/0] via 172.20.121.2, port1

    10.20.30.0/24 [10/0] via 172.20.167.254, port3 


    10.30.20.0/24 [10/0] via 172.20.121.2, port1

    Question 11 Which three methods can be used to deliver the token code to a user who is configured to use two-factor authentication? (Choose
    Correct three.)
    1 points out of 1
    Select one or more:
    SMS text message 

    Email 

    Voicemail message

    FortiToken 

    Instant message app

    Question 12 An administrator needs to configure two static default routes pointing to two ISPs. The administrator wants to have both static
    Incorrect routes active in the routing table.
    0 points out of 1  
    What configuration setting must match in both routes to achieve this?

    Select one:
    Metric

    Distance

    Outgoing interface

    Priority  Incorrect. Review the Routing Monitor and Route Attributes section in the Routing lesson.

    Question 13 What is the purpose of the Policy Lookup feature?


    Correct

    1 points out of 1 Select one:


    It finds duplicate objects in firewall policies.

    It searches the matching policy based on input criteria. 

    It creates a new firewall policy based on input criteria.

    It creates packet flow over FortiGate by sending real-time traffic.


    Question 14 Which two statements about blocking known Botnet Command and Control domains are true? (Choose two.)
    Correct

    1 points out of 1 Select one or more:


    This service requires a FortiGuard web filter and IPS license. 

    DNS lookups are checked against the Botnet Command and Control database. 

    The Botnet Command and Control domains can be enabled in the Web Filter profile.

    You must manually download the Botnet Command and Control database and import it into FortiGate.

    Question 15 A FortiGate is configured for Firewall Authentication. When attempting to access an external website, the user is not presented with a
    Correct login prompt.
    1 points out of 1  
    What is the most likely reason for this situation?

    Select one:
    The user is using a super admin account.

    The user is using a guest account profile.

    No matching user account exists for this user.

    The user was authenticated using passive authentication. 

    S-ar putea să vă placă și