ExamGecko
Search Search Login
Home Home / Fortinet / NSE7_EFW-7.2

Fortinet NSE7_EFW-7.2 Practice Test - Questions Answers, Page 6

Question list
Search
Search
Open VPLUS File
Convert VPLUS to PDF

Related questions

Refer to the exhibit, which shows two configured FortiGate devices and peering over FGSP. The main link directly connects the two FortiGate devices and is configured using the set session-syn-dev <interface> command. What is the primary reason to configure the main link?
Exhibit. Refer to the exhibit, which contains a partial policy configuration. Which setting must you configure to allow SSH?
Which, three conditions are required for two FortiGate devices to form an OSPF adjacency? (Choose three.)
Which FortiGate in a Security I auric sends togs to FortiAnalyzer?
Exhibit. Refer to the exhibit, which shows information about an OSPF interlace What two conclusions can you draw from this command output? (Choose two.)
Which two statements about metadata variables are true? (Choose two.)
Which two statements about IKE vision 2 are true? (Choose two.)
Refer to the exhibits, which contain the network topology and BGP configuration for a hub. Exhibit A. Exhibit B. An administrator is trying to configure ADVPN with a hub and spoke VPN setup using iBGP. All the VPNs are up and connected to the hub. The hub is receiving route information from both spokes over iBGP; however the spokes are not receiving route information from each other. What change must the administrator make to the hub BGP configuration so that the routes learned from one spoke are forwarded to the other spoke?
Refer to the exhibit. which contains a partial configuration of the global system. What can you conclude from this output?
Refer to the exhibit, which shows a network diagram. Which IPsec phase 2 configuration should you impalement so that only one remote site is connected at any time?

Question 51

Report
Export
Collapse

Refer to the exhibits, which contain the network topology and BGP configuration for a hub.

Exhibit A.

Exhibit B.

An administrator is trying to configure ADVPN with a hub and spoke VPN setup using iBGP. All the VPNs are up and connected to the hub. The hub is receiving route information from both spokes over iBGP; however the spokes are not receiving route information from each other.

What change must the administrator make to the hub BGP configuration so that the routes learned from one spoke are forwarded to the other spoke?

A.
Configure the hub as a route reflector
A.
Configure the hub as a route reflector
Answers
B.
Configure auto-discovery-sender on the hub
B.
Configure auto-discovery-sender on the hub
Answers
C.
Add a prefix list to the hub that permits routes to be shared between the spokes
C.
Add a prefix list to the hub that permits routes to be shared between the spokes
Answers
D.
Enable route redistribution under config router bgp
D.
Enable route redistribution under config router bgp
Answers
Suggested answer: B

Question 52

Report
Export
Collapse

How are bulk configuration changes made using FortiManager CLI scripts? (Choose two.)

A.
When run on the Device Database, changes are applied directly to the managed FortiGate device.
A.
When run on the Device Database, changes are applied directly to the managed FortiGate device.
Answers
B.
When run on the Remote FortiGate directly, administrators do not have the option to review the changes prior to installation.
B.
When run on the Remote FortiGate directly, administrators do not have the option to review the changes prior to installation.
Answers
C.
When run on the All FortiGate in ADOM, changes are automatically installed without the creation of a new revision history.
C.
When run on the All FortiGate in ADOM, changes are automatically installed without the creation of a new revision history.
Answers
D.
When run on the Policy Package, ADOM database, you must use the installation wizard to apply the changes to the managed FortiGate device.
D.
When run on the Policy Package, ADOM database, you must use the installation wizard to apply the changes to the managed FortiGate device.
Answers
Suggested answer: B, D

Question 53

Report
Export
Collapse

Which statement about the designated router (DR) and backup designated router (BDR) in an OSPF multi-access network is true?

A.
Only the DR receives link state information from non-DR routers.
A.
Only the DR receives link state information from non-DR routers.
Answers
B.
Non-DR and non-BDR routers form full adjacencies to DR only.
B.
Non-DR and non-BDR routers form full adjacencies to DR only.
Answers
C.
FortiGate first checks the OSPF ID to elect a DR.
C.
FortiGate first checks the OSPF ID to elect a DR.
Answers
D.
Non-DR and non-BDR routers send link state updates and acknowledgements to 224.0.0.6.
D.
Non-DR and non-BDR routers send link state updates and acknowledgements to 224.0.0.6.
Answers
Suggested answer: B

Question 54

Report
Export
Collapse

Refer to the exhibit, which shows an SSL certification inspection configuration.

Which action does FortiGate take if the server name indication (SNI) does not match either the common name (CN) or any of the subject alternative names (SAN) in the server certificate?

A.
FortiGate uses the first entry listed in the SAN field in the server certificate
A.
FortiGate uses the first entry listed in the SAN field in the server certificate
Answers
B.
FortiGate uses the CN information from the Subject field in the server certificate
B.
FortiGate uses the CN information from the Subject field in the server certificate
Answers
C.
FortiGate uses the SNI from the user's web browser.
C.
FortiGate uses the SNI from the user's web browser.
Answers
D.
FortiGate closes the connection because this represents an invalid SSL/TLS configuration
D.
FortiGate closes the connection because this represents an invalid SSL/TLS configuration
Answers
Suggested answer: D

Question 55

Report
Export
Collapse

Refer to the exhibit, which contains a TCL script configuration on FortiManager.

An administrator has configured the TCL script on FortiManager, but the TCL script failed to apply any changes to the managed device after being run.

Why did the TCL script fail to make any changes to the managed device?

A.
The TCL procedure run_cmd has not been created.
A.
The TCL procedure run_cmd has not been created.
Answers
B.
The TCL script must start with #include.
B.
The TCL script must start with #include.
Answers
C.
There is no corresponding #! to signify the end of the script.
C.
There is no corresponding #! to signify the end of the script.
Answers
D.
The TCL procedure lacks the required loop statements to iterate through the changes.
D.
The TCL procedure lacks the required loop statements to iterate through the changes.
Answers
Suggested answer: A

Question 56

Report
Export
Collapse

What are two functions of automation stitches? (Choose two.)

A.
Automation stitches can be created to run diagnostic commands and email the results when CPU or memory usage exceeds specified thresholds.
A.
Automation stitches can be created to run diagnostic commands and email the results when CPU or memory usage exceeds specified thresholds.
Answers
B.
An automation stitch configured to execute actions in parallel can be set to insert a specific delay between actions.
B.
An automation stitch configured to execute actions in parallel can be set to insert a specific delay between actions.
Answers
C.
Automation stitches can be configured on any FortiGate device in a Security Fabric environment.
C.
Automation stitches can be configured on any FortiGate device in a Security Fabric environment.
Answers
D.
An automation stitch configured to execute actions sequentially can take parameters from previous actions as input for the current action.
D.
An automation stitch configured to execute actions sequentially can take parameters from previous actions as input for the current action.
Answers
Suggested answer: A, D
Total 56 questions
Go to page: of 6
ExamGecko

Copyright @2023 ExamGecko | All right reserved

Mail us: [email protected]
About us
Contact us
Twitter X
Facebook
Medium
Convert VPLUS to PDF
Open VPLUS files Easily and Quickly
Privacy Policy
Disclaimer
Terms