ExamGecko
Login
Home / Fortinet / NSE4_FGT-7.2 / List of questions
Ask Question

Fortinet NSE4_FGT-7.2 Practice Test - Questions Answers, Page 5

Add to Whishlist

List of questions

Question 41

Report Export Collapse

Which two statements are true about the FGCP protocol? (Choose two.)

Become a Premium Member for full access
  Unlock Premium Member

Question 42

Report Export Collapse

Which two attributes are required on a certificate so it can be used as a CA certificate on SSL Inspection? (Choose two.)

Become a Premium Member for full access
  Unlock Premium Member

Question 43

Report Export Collapse

Which two inspection modes can you use to configure a firewall policy on a profile-based next-generation firewall (NGFW)? (Choose two.)

Become a Premium Member for full access
  Unlock Premium Member

Question 44

Report Export Collapse

Refer to the exhibit.

Fortinet NSE4_FGT-7.2 image Question 44 26117 09182024185939000000

The Root and To_Internet VDOMs are configured in NAT mode. The DMZ and Local VDOMs are configured in transparent mode.

The Root VDOM is the management VDOM. The To_Internet VDOM allows LAN users to access the internet. The To_Internet VDOM is the only VDOM with internet access and is directly connected to ISP modem .

With this configuration, which statement is true?

Become a Premium Member for full access
  Unlock Premium Member

Question 45

Report Export Collapse

Refer to the exhibit.

Fortinet NSE4_FGT-7.2 image Question 45 26118 09182024185939000000

The exhibit shows the IPS sensor configuration.

If traffic matches this IPS sensor, which two actions is the sensor expected to take? (Choose two.)

Become a Premium Member for full access
  Unlock Premium Member

Question 46

Report Export Collapse

Which CLI command allows administrators to troubleshoot Layer 2 issues, such as an IP address conflict?

Become a Premium Member for full access
  Unlock Premium Member

Question 47

Report Export Collapse

Refer to the exhibit showing a debug flow output.

Fortinet NSE4_FGT-7.2 image Question 47 26120 09182024185939000000

Which two statements about the debug flow output are correct? (Choose two.)

Become a Premium Member for full access
  Unlock Premium Member

Question 48

Report Export Collapse

Which two settings are required for SSL VPN to function between two FortiGate devices? (Choose two.)

Become a Premium Member for full access
  Unlock Premium Member

Question 49

Report Export Collapse

On FortiGate, which type of logs record information about traffic directly to and from the FortiGate management IP addresses?

Become a Premium Member for full access
  Unlock Premium Member

Question 50

Report Export Collapse

Which statement about the policy ID number of a firewall policy is true?

Become a Premium Member for full access
  Unlock Premium Member
Total 184 questions
Go to page: of 19
Open VPLUS File
Convert VPLUS to PDF

Related questions

What are two features of the NGFW policy-based mode? (Choose two.)
Refer to the exhibits. Exhibit A shows the application sensor configuration. Exhibit B shows the Excessive-Bandwidth and Apple filter details. Based on the configuration, what will happen to Apple FaceTime if there are only a few calls originating or incoming?
Which timeout setting can be responsible for deleting SSL VPN associated sessions?
What are two features of collector agent advanced mode? (Choose two.)
If Internet Service is already selected as Destination in a firewall policy, which other configuration object can be selected for the Destination field of a firewall policy?
Which three pieces of information does FortiGate use to identify the hostname of the SSL server when SSL certificate inspection is enabled? (Choose three.)
What are two functions of the ZTNA rule? (Choose two.)
What are two characteristics of FortiGate HA cluster virtual IP addresses? (Choose two.)
Which two features of IPsec IKEv1 authentication are supported by FortiGate? (Choose two.)
Which two statements are correct about SLA targets? (Choose two.)