Documente Academic
Documente Profesional
Documente Cultură
Question 1 Which NAT mode is supported by a VDOM configured as NGFW Policy-based mode?
Correct
Firewall NAT
IP pool
Central SNAT
Question 2 Which three actions are valid for static URL filtering? (Choose three.)
Correct
Exempt
Shape
Block
Warning
Question 3 Which two modes are FortiGate operation modes? (Choose two.)
Correct
Transparent
Bridge
NAT
Question 4 Which security processor unit (SPU) is optimized for entry-level FortiGate models?
Correct
System-on-a-chip processor
Security processor
Network processor
Question 5 Which three settings and protocols can be used to provide secure and restrictive administrative access to FortiGate? (Choose three.)
Correct
SSH
Trusted host
Trusted authentication
HTTPS
Question 6 Which inspection mode allows administrators to select the network applications from the firewall policy configuration?
Correct
Certificate-based
NGFW Policy-based
Proxy
Question 7 Which two statements about incoming and outgoing interfaces in firewall policies are true? (Choose two.)
Correct
Question 8 An administrator needs to create a tunnel mode SSL-VPN to access an internal web server from the Internet. The web server is
Correct connected to port1. The Internet is connected to port2. Both interfaces belong to the VDOM named Corporation.
1 points out of 1
Which interface must be used as the source for the firewall policy that will allow this traffic?
Select one:
port1
port2
ssl.Corporation
ssl.root
Question 9 What information can the client integrity check collect about applications running in SSL-VPN clients? (Choose two.)
Correct
Use name
Application-specific settings
Signature updates
Question 10 Examine the exhibit showing a routing table.
Correct
1 points out of 1
Select one:
10.20.30.0/26 [10/0] via 172.20.168.254, port2
Question 11 Which three methods can be used to deliver the token code to a user who is configured to use two-factor authentication? (Choose
Correct three.)
1 points out of 1
Select one or more:
SMS text message
Email
Voicemail message
FortiToken
Question 12 An administrator needs to configure two static default routes pointing to two ISPs. The administrator wants to have both static
Incorrect routes active in the routing table.
0 points out of 1
What configuration setting must match in both routes to achieve this?
Select one:
Metric
Distance
Outgoing interface
Priority Incorrect. Review the Routing Monitor and Route Attributes section in the Routing lesson.
DNS lookups are checked against the Botnet Command and Control database.
The Botnet Command and Control domains can be enabled in the Web Filter profile.
You must manually download the Botnet Command and Control database and import it into FortiGate.
Question 15 A FortiGate is configured for Firewall Authentication. When attempting to access an external website, the user is not presented with a
Correct login prompt.
1 points out of 1
What is the most likely reason for this situation?
Select one:
The user is using a super admin account.