Join the discussion
Question 1/107
Which two statements about SSL VPN between two FortiGate devices are true? (Choose two.)
Correct Answer: B,C
https://docs.fortinet.com/document/fortigate/6.2.9/cookbook/266506/ssl-vpn-with-certificateauthentication
Add Comments
- Other Question (107q)
- Q1. Which two statements about SSL VPN between two FortiGate devices are true? (Choose two.)...
- Q2. Refer to the exhibit. (Exhibit) Which contains a Performance SLA configuration. An adminis...
- Q3. Refer to the exhibit. (Exhibit) The Root and To_Internet VDOMs are configured in NAT mode....
- Q4. Which three methods are used by the collector agent for AD polling? (Choose three.)...
- Q5. An administrator has configured the following settings: (Exhibit) What are the two results...
- Q6. By default, FortiGate is configured to use HTTPS when performing live web filtering with F...
- Q7. Refer to the exhibits to view the firewall policy (Exhibit A) and the antivirus profile (E...
- Q8. Which engine handles application control traffic on the next-generation firewall (NGFW) Fo...
- Q9. Which three statements are true regarding session-based authentication? (Choose three.)...
- Q10. A network administrator has enabled SSL certificate inspection and antivirus on FortiGate....
- Q11. Refer to the exhibit. (Exhibit) The exhibit contains the configuration for an SD-WAN Perfo...
- Q12. What is the primary FortiGate election process when the HA override setting is disabled?...
- Q13. Examine the network diagram shown in the exhibit, then answer the following question: (Exh...
- Q14. Which two statements are true about the FGCP protocol? (Choose two.)...
- Q15. A FortiGate is operating in NAT mode and configured with two virtual LAN (VLAN) sub interf...
- Q16. Refer to the exhibit. (Exhibit) According to the certificate values shown in the exhibit, ...
- Q17. Refer to the exhibit. (Exhibit) Which contains a session list output. Based on the informa...
- Q18. An administrator wants to configure timeouts for users. Regardless of the user's behavior,...
- Q19. A network administrator wants to set up redundant IPsec VPN tunnels on FortiGate by using ...
- Q20. Refer to the exhibit. (Exhibit) The exhibit contains a network diagram, virtual IP, IP poo...
- Q21. Refer to the exhibit. (Exhibit) Given the security fabric topology shown in the exhibit, w...
- Q22. Which two configuration settings are synchronized when FortiGate devices are in an active-...
- Q23. An administrator wants to configure timeouts for users. Regardless of the user behavior, t...
- Q24. Refer to the exhibit. (Exhibit) According to the certificate values shown in the exhibit, ...
- Q25. Which three statements are true regarding session-based authentication? (Choose three.)...
- Q26. An administrator does not want to report the logon events of service accounts to FortiGate...
- Q27. An administrator needs to increase network bandwidth and provide redundancy. What interfac...
- Q28. What is the limitation of using a URL list and application control on the same firewall po...
- Q29. Which two protocol options are available on the CLI but not on the GUI when configuring an...
- Q30. Refer to the exhibit. (Exhibit) The exhibits show a network diagram and the explicit web p...
- Q31. Which two statements are correct regarding FortiGate FSSO agentless polling mode? (Choose ...
- Q32. When a firewall policy is created, which attribute is added to the policy to support recor...
- Q33. Which three options are the remote log storage options you can configure on FortiGate? (Ch...
- Q34. An administrator has a requirement to keep an application session from timing out on port ...
- Q35. Which two policies must be configured to allow traffic on a policy-based next-generation f...
- Q36. Refer to the exhibits. (Exhibit) The exhibits show the SSL and authentication policy (Exhi...
- Q37. Which three CLI commands can you use to troubleshoot Layer 3 issues if the issue is in nei...
- Q38. Refer to the exhibit, which contains a radius server configuration. (Exhibit) An administr...
- Q39. Which downstream FortiGate VDOM is used to join the Security Fabric when split-task VDOM i...
- Q40. Refer to the exhibit. (Exhibit) The exhibit contains a network diagram, firewall policies,...
- Q41. Refer to the exhibit. (Exhibit) An administrator is running a sniffer command as shown in ...
- Q42. An administrator wants to configure timeouts for users. Regardless of the useres behavior,...
- Q43. Refer to the exhibit, which contains a static route configuration. (Exhibit) An administra...
- Q44. Which two statements are correct about NGFW Policy-based mode? (Choose two.)...
- Q45. A network administrator wants to set up redundant IPsec VPN tunnels on FortiGate by using ...
- Q46. Refer to the FortiGuard connection debug output. (Exhibit) Based on the output shown in th...
- Q47. Refer to the exhibits. (Exhibit) Exhibit A shows system performance output. Exhibit B show...
- Q48. Which two VDOMs are the default VDOMs created when FortiGate is set up in split VDOM mode?...
- Q49. Which three statements are true regarding session-based authentication? (Choose three.)...
- Q50. Refer to the exhibit. (Exhibit) Examine the intrusion prevention system (IPS) diagnostic c...
- Q51. Refer to the exhibit. (Exhibit) In the network shown in the exhibit, the web client cannot...
- Q52. Which three pieces of information does FortiGate use to identify the hostname of the SSL s...
- Q53. Which of statement is true about SSL VPN web mode?...
- Q54. Refer to the exhibit. (Exhibit) Which contains a session list output. Based on the informa...
- Q55. What devices form the core of the security fabric?...
- Q56. Refer to the exhibit. (Exhibit) The exhibits show a network diagram and the explicit web p...
- Q57. Refer to the exhibit showing a debug flow output. (Exhibit) Which two statements about the...
- Q58. Which CLI command will display sessions both from client to the proxy and from the proxy t...
- Q59. In consolidated firewall policies, IPv4 and IPv6 policies are combined in a single consoli...
- Q60. Which two statements are correct about SLA targets? (Choose two.)...
- Q61. Which two VDOMs are the default VDOMs created when FortiGate is set up in split VDOM mode?...
- Q62. A network administrator has enabled full SSL inspection and web filtering on FortiGate. Wh...
- Q63. How does FortiGate act when using SSL VPN in web mode?...
- Q64. Which two statements are true about collector agent standard access mode? (Choose two.)...
- Q65. Refer to the exhibits. (Exhibit) Exhibit A shows system performance output. Exhibit B show...
- Q66. What is the limitation of using a URL list and application control on the same firewall po...
- Q67. Which three authentication timeout types are availability for selection on FortiGate? (Cho...
- Q68. Refer to the exhibit to view the application control profile. (Exhibit) Users who use Appl...
- Q69. Which two statements are true about the RPF check? (Choose two.)...
- Q70. Refer to the exhibit to view the application control profile. (Exhibit) Users who use Appl...
- Q71. Examine this FortiGate configuration: (Exhibit) Examine the output of the following debug ...
- Q72. How do you format the FortiGate flash disk?
- Q73. Refer to the exhibit. (Exhibit) The exhibit shows a CLI output of firewall policies, proxy...
- Q74. Refer to the exhibit to view the application control profile. (Exhibit) Users who use Appl...
- Q75. Examine the two static routes shown in the exhibit, then answer the following question. (E...
- Q76. Examine this PAC file configuration. (Exhibit) Which of the following statements are true?...
- Q77. Which of the following conditions must be met in order for a web browser to trust a web se...
- Q78. In which two ways can RPF checking be disabled? (Choose two )...
- Q79. Refer to the exhibit. (Exhibit) An administrator is running a sniffer command as shown in ...
- Q80. An administrator has configured a strict RPF check on FortiGate. Which statement is true a...
- Q81. Which three statements about a flow-based antivirus profile are correct? (Choose three.)...
- Q82. Which of statement is true about SSL VPN web mode?...
- Q83. Examine this FortiGate configuration: (Exhibit) Examine the output of the following debug ...
- Q84. Exhibit: (Exhibit) Refer to the exhibit to view the authentication rule configuration In t...
- Q85. Examine the following web filtering log. (Exhibit) Which statement about the log message i...
- Q86. Which two policies must be configured to allow traffic on a policy-based next-generation f...
- Q87. Which statement correctly describes NetAPI polling mode for the FSSO collector agent?...
- Q88. Refer to the exhibit. (Exhibit) Given the security fabric topology shown in the exhibit, w...
- Q89. What inspection mode does FortiGate use if it is configured as a policy-based next-generat...
- Q90. Refer to the exhibit. (Exhibit) Which contains a session diagnostic output. Which statemen...
- Q91. An administrator must disable RPF check to investigate an issue. Which method is best suit...
- Q92. Which security feature does FortiGate provide to protect servers located in the internal n...
- Q93. Examine the IPS sensor and DoS policy configuration shown in the exhibit, then answer the ...
- Q94. Consider the topology: Application on a Windows machine <--{SSL VPN} -->FGT--> Te...
- Q95. A team manager has decided that, while some members of the team need access to a particula...
- Q96. Refer to the exhibit. (Exhibit) Based on the administrator profile settings, what permissi...
- Q97. When browsing to an internal web server using a web-mode SSL VPN bookmark, which IP addres...
- Q98. Which of the following statements correctly describes FortiGates route lookup behavior whe...
- Q99. When a firewall policy is created, which attribute is added to the policy to support recor...
- Q100. What inspection mode does FortiGate use if it is configured as a policy-based next-generat...
- Q101. Examine this output from a debug flow: (Exhibit) Why did the FortiGate drop the packet?...
- Q102. Refer to the exhibit to view the firewall policy. (Exhibit) Which statement is correct if ...
- Q103. What is the effect of enabling auto-negotiate on the phase 2 configuration of an IPsec tun...
- Q104. If Internet Service is already selected as in a firewall policy, which other configuration...
- Q105. An administrator is configuring an IPsec VPN between site A and site B. The Remote Gateway...
- Q106. An administrator is configuring an IPsec VPN between site A and site B. The Remote Gateway...
- Q107. By default, FortiGate is configured to use HTTPS when performing live web filtering with F...
[×]
Download PDF File
Enter your email address to download Fortinet.NSE4_FGT-7.0.v2024-03-04.q107.pdf