ExamGecko
Search Search Login
Home Home / Fortinet / NSE6_FSW-7.2

Fortinet NSE6_FSW-7.2 Practice Test - Questions Answers, Page 4

Question list
Search
Search
Open VPLUS File
Convert VPLUS to PDF

Related questions

Refer to the exhibits. You are asked to ensure that managed FortiSwitch devices are reachable by other devices, such as SNMP and other management tools across your network. Which setting must you configure to ensure traffic from other devices in the network reaches FortiSwitch?
Refer to the exhibit. Core-1 and Access-1 are managed and authorized by FortiGate-1. which uses port4 as the FortiLink interface. After FortiGate authorizes and manages Core-2. Port1 status becomes STP discarding. Why is port1 in the discarding state?
Exhibit. The exhibit shows the current status of the ports on the managed FortiSwitch. Access-1. Why would FortiGate display a serial number in the Native VLAN column associated with the port23 entry?
Exhibit. Two routes are not installed in the forwarding information base (FIB) as shown in the exnibit. Which two statements about these two route entries are true? (Choose two.)
Exhibit. port24 is the only uplink port connected to the network where access to FortiSwitch management services is possible. However, FortiSwitch is still not accessible on the management interface. Which two actions should you take to fix the issue and access FortiSwitch? (Choose two.)
Which Ethernet frame can create Layer 2 flooding due to all bytes on the destination MAC address being set to all FF?
Which feature should you enable to reduce the number or unwanted IGMP reports processed by the IGMP querier?
Which two types of Layer 3 interfaces can participate in dynamic routing on FortiSwitch? (Choose two.)
Which two rules used by MSTP are similar to rules used by other STP methods? (Choose two.)
Refer to the diagnostic output: Two entries in the exhibit show that the same MAC address has been used in two different VLANs. Which MAC address is shown in the above output?

Question 31

Report
Export
Collapse

How does FortiSwitch perform actions on ingress and egress traffic using the access control list (ACL)?

A.
Only high-end FortiSwitch models support ACL.
A.
Only high-end FortiSwitch models support ACL.
Answers
B.
ACL can be used only at the prelookup stage in the traffic processing pipeline.
B.
ACL can be used only at the prelookup stage in the traffic processing pipeline.
Answers
C.
Classifiers enable matching traffic based only on the VLAN ID.
C.
Classifiers enable matching traffic based only on the VLAN ID.
Answers
D.
FortiSwitch checks ACL policies only from top to bottom.
D.
FortiSwitch checks ACL policies only from top to bottom.
Answers
Suggested answer: D

Question 32

Report
Export
Collapse

An administrator needs to deploy managed FortiSwitch devices in a remote location where multiple VLANs must be utilized to segment devices. No Layer 3 switch or router is present. The the only WAN connectivity is the router provided by the ISP connected to the public internet.

Which two items will the administrator need to use? (Choose two.)

A.
A FortiSwitch interface connected to the ISP router configured with fortilink-13-mode enabled.
A.
A FortiSwitch interface connected to the ISP router configured with fortilink-13-mode enabled.
Answers
B.
FortiSwitch and FortiGate devices configured with VXLAN interfaces.
B.
FortiSwitch and FortiGate devices configured with VXLAN interfaces.
Answers
C.
FortiSwitch devices configured with NAT disabled.
C.
FortiSwitch devices configured with NAT disabled.
Answers
D.
FortiSwitch devices that have the required internal hardware for this configuration.
D.
FortiSwitch devices that have the required internal hardware for this configuration.
Answers
E.
FortiSwitch and FortiGate devices configured with IPsec interfaces.
E.
FortiSwitch and FortiGate devices configured with IPsec interfaces.
Answers
Suggested answer: B, C

Question 33

Report
Export
Collapse

Which statement about the configuration of VLANs on a managed FortiSwitch port is true?

A.
Untagged VLANs must be part of the allowed VLANs: ingress and egress.
A.
Untagged VLANs must be part of the allowed VLANs: ingress and egress.
Answers
B.
FortiSwitch VLAN interfaces are created only when FortiSwitch is managed by Forti-Gate.
B.
FortiSwitch VLAN interfaces are created only when FortiSwitch is managed by Forti-Gate.
Answers
C.
The native VLAN is implicitly part of the allowed VLAN on the port.
C.
The native VLAN is implicitly part of the allowed VLAN on the port.
Answers
D.
Allowed VLANS expand the collision domain to the port.
D.
Allowed VLANS expand the collision domain to the port.
Answers
Suggested answer: C

Question 34

Report
Export
Collapse

Exhibit.

port24 is the only uplink port connected to the network where access to FortiSwitch management services is possible. However, FortiSwitch is still not accessible on the management interface. Which two actions should you take to fix the issue and access FortiSwitch? (Choose two.)

A.
You must add port24 native VLAN as an allowed VLAN on internal.
A.
You must add port24 native VLAN as an allowed VLAN on internal.
Answers
B.
You must add VLAN ID 200 to the allowed VLANS on internal.
B.
You must add VLAN ID 200 to the allowed VLANS on internal.
Answers
C.
You must allow VLAN ID 4094 on port24, if management traffic is tagged.
C.
You must allow VLAN ID 4094 on port24, if management traffic is tagged.
Answers
D.
You should use VLAN ID 4094 as the native VLAN on port24.
D.
You should use VLAN ID 4094 as the native VLAN on port24.
Answers
Suggested answer: C, D

Question 35

Report
Export
Collapse

How are the 'by VLAN redirect MAC address quarantine' mode and the 'by redirect MAC address quarantine' mode on FortiGate similar?

A.
Both modes move quarantined devices to the quarantine VLAN.
A.
Both modes move quarantined devices to the quarantine VLAN.
Answers
B.
Both modes require firewall policies to block inter-VLAN traffic.
B.
Both modes require firewall policies to block inter-VLAN traffic.
Answers
C.
Both modes add quarantined device MAC addresses to the blocked firewall address group.
C.
Both modes add quarantined device MAC addresses to the blocked firewall address group.
Answers
D.
Both modes block intra-VLAN traffic by FortiGate automatically.
D.
Both modes block intra-VLAN traffic by FortiGate automatically.
Answers
Suggested answer: D

Question 36

Report
Export
Collapse

What type of multimode transceiver can be used to split a 40G port?

A.
QSFP+ transceiver
A.
QSFP+ transceiver
Answers
B.
SFP transceiver
B.
SFP transceiver
Answers
C.
QSFP transceiver
C.
QSFP transceiver
Answers
D.
SFP+ transceiver
D.
SFP+ transceiver
Answers
Suggested answer: A

Question 37

Report
Export
Collapse

Which two statements about 802.1X authentication on FortiSwitch ports are true? (Choose two.)

A.
All hosts behind an authenticated port are allowed access after a successful authentica-tion.
A.
All hosts behind an authenticated port are allowed access after a successful authentica-tion.
Answers
B.
A security policy is used to apply 802.1 authentication on a port.
B.
A security policy is used to apply 802.1 authentication on a port.
Answers
C.
A local user database must be used to authenticate devices using the 802.1X authentica-tion protocol.
C.
A local user database must be used to authenticate devices using the 802.1X authentica-tion protocol.
Answers
D.
All devices connecting to FortiSwitch must support 802.1X authentication.
D.
All devices connecting to FortiSwitch must support 802.1X authentication.
Answers
Suggested answer: A, B

Question 38

Report
Export
Collapse

Which two statements about managing a FortiSwitch stack on FortiGate are true? (Choose two.)

A.
A FortiLink interface must be enabled on FortiGate.
A.
A FortiLink interface must be enabled on FortiGate.
Answers
B.
The switch controller feature must be enabled on FortiGate.
B.
The switch controller feature must be enabled on FortiGate.
Answers
C.
Only a hardware-based FortiGate can manage a FortiSwitch stack.
C.
Only a hardware-based FortiGate can manage a FortiSwitch stack.
Answers
D.
FortiSwitch must be operating in standalone mode before authorization.
D.
FortiSwitch must be operating in standalone mode before authorization.
Answers
Suggested answer: A, B

Question 39

Report
Export
Collapse

How is traffic routed on FortiSwitch?

A.
Hardware-based routing on FortiSwitch is handled by the CPU.
A.
Hardware-based routing on FortiSwitch is handled by the CPU.
Answers
B.
FortiSwitch looks up the hardware routing table and then the forwarding information base (FIB).
B.
FortiSwitch looks up the hardware routing table and then the forwarding information base (FIB).
Answers
C.
ASIC hardware routing can only handle dynamic routing, if supported.
C.
ASIC hardware routing can only handle dynamic routing, if supported.
Answers
D.
Layer 3 routing can be configured on FortiSwitch, while managed by FortiGate.
D.
Layer 3 routing can be configured on FortiSwitch, while managed by FortiGate.
Answers
Suggested answer: B

Question 40

Report
Export
Collapse

Exhibit.

LAG and MCLAG are used to increase the available network bandwidth and enable redundancy. How does spanning tree protocol see MCLAG and LAG if they are configured based on the physi-cal view shown in the exhibit? (Choose two)

A.
Switch 1. Switch 2, and Switch 3 are seen as one MCLAG peer group
A.
Switch 1. Switch 2, and Switch 3 are seen as one MCLAG peer group
Answers
B.
Switch 3 and Switch 4 uplinks are treated as single interfaces.
B.
Switch 3 and Switch 4 uplinks are treated as single interfaces.
Answers
C.
Switch 3 and switch 4 are seen as one MCLAG switch client
C.
Switch 3 and switch 4 are seen as one MCLAG switch client
Answers
D.
Switch 1 and Switch 2 both seen as one single switch.
D.
Switch 1 and Switch 2 both seen as one single switch.
Answers
Suggested answer: C, D
Total 56 questions
Go to page: of 6
ExamGecko

Copyright @2023 ExamGecko | All right reserved

Mail us: [email protected]
About us
Contact us
Twitter X
Facebook
Medium
Convert VPLUS to PDF
Open VPLUS files Easily and Quickly
Privacy Policy
Disclaimer
Terms