ExamGecko
Login
Home / Fortinet / NSE7_SDW-7.2 / List of questions
Ask Question

Fortinet NSE7_SDW-7.2 Practice Test - Questions Answers, Page 6

Add to Whishlist

List of questions

Question 51

Report Export Collapse

Refer to the exhibit.

Fortinet NSE7_SDW-7.2 image Question 51 27251 09182024190937000000

Which statement about the role of the ADVPN device in handling traffic is true?

This is a spoke that has received a query from a remote hub and has forwarded the response to its hub.
This is a spoke that has received a query from a remote hub and has forwarded the response to its hub.
Two hubs, 10.0.1.101 and 10.0.2.101, are receiving and forwarding queries between each other.
Two hubs, 10.0.1.101 and 10.0.2.101, are receiving and forwarding queries between each other.
This is a hub that has received a query from a spoke and has forwarded it to another spoke.
This is a hub that has received a query from a spoke and has forwarded it to another spoke.
Two spokes, 192.2.0.1 and 10.0.2.101, forward their queries to their hubs.
Two spokes, 192.2.0.1 and 10.0.2.101, forward their queries to their hubs.
Suggested answer: C
asked 18/09/2024
Devon Marsham
35 questions

Question 52

Report Export Collapse

The SD-WAN overlay template helps to prepare SD-WAN deployments. To complete the tasks performed by the SD-WAN overlay template, the administrator must perform some post-run tasks. What are three mandatory post-run tasks that must be performed? (Choose three.)

Create policy packages for branch devices.
Create policy packages for branch devices.
Assign an sdwan_id metadata variable to each device (branch and hub}.
Assign an sdwan_id metadata variable to each device (branch and hub}.
Configure routing through overlay tunnels created by the SD-WAN overlay template.
Configure routing through overlay tunnels created by the SD-WAN overlay template.
Assign a branch_id metadata variable to each branch device.
Assign a branch_id metadata variable to each branch device.
Configure SD-WAN rules.
Configure SD-WAN rules.
Suggested answer: A, B, C
asked 18/09/2024
shafinaaz hossenny
43 questions

Question 53

Report Export Collapse

Which diagnostic command can you use to show the member utilization statistics measured by performance SLAs for the last 10 minutes?

diagnose sys sdwan sla-log
diagnose sys sdwan sla-log
diagnose ays sdwan health-check
diagnose ays sdwan health-check
diagnose sys sdwan intf-sla-log
diagnose sys sdwan intf-sla-log
diagnose sys sdwan log
diagnose sys sdwan log
Suggested answer: A
asked 18/09/2024
Duane Joyce
41 questions

Question 54

Report Export Collapse

Which two statements about SLA targets and SD-WAN rules are true? (Choose two.)

SD-WAN rules use SLA targets to check if the preferred members meet the SLA requirements
SD-WAN rules use SLA targets to check if the preferred members meet the SLA requirements
Member metrics are measured only if an SLA target is configured
Member metrics are measured only if an SLA target is configured
When configuring an SD-WAN rule you can select multiple SLA targets of the same performance SLA
When configuring an SD-WAN rule you can select multiple SLA targets of the same performance SLA
SLA targets are used only by SD-WAN rules that are configured with Lowest Cost (SLA) or Maximize Bandwidth (SLA) as strategy
SLA targets are used only by SD-WAN rules that are configured with Lowest Cost (SLA) or Maximize Bandwidth (SLA) as strategy
Suggested answer: A, D
asked 18/09/2024
Reed G Porter
34 questions

Question 55

Report Export Collapse

Which two protocols in the IPsec suite are most used for authentication and encryption? (Choose two.)

Encapsulating Security Payload (ESP)
Encapsulating Security Payload (ESP)
Secure Shell (SSH)
Secure Shell (SSH)
Internet Key Exchange (IKE)
Internet Key Exchange (IKE)
Security Association (SA)
Security Association (SA)
Suggested answer: A, C
asked 18/09/2024
Filippo Bertuzzi
37 questions

Question 56

Report Export Collapse

Which two performance SLA protocols enable you to verify that the server response contains a specific value? (Choose two.)

http
http
icmp
icmp
twamp
twamp
dns
dns
Suggested answer: A, D
Explanation:

Performance SLA (Service Level Agreement) protocols are used in SD-WAN to monitor the quality and performance of various network services. The two protocols that specifically allow for verifying a specific value in the server response are:

HTTP (Hypertext Transfer Protocol): HTTP is the foundation of data communication on the World Wide Web. It allows for fetching resources, such as HTML documents. You can configure an HTTP performance SLA to send specific requests (e.g., GET or POST) and then check if the response body contains a particular string or value. This is useful for validating web server functionality and content delivery.

DNS (Domain Name System): DNS is responsible for translating domain names into IP addresses. A DNS performance SLA can be set up to query a specific domain and verify that the returned IP address or other DNS record values match what is expected. This helps ensure proper name resolution and accessibility of resources.

asked 18/09/2024
Tanvir Anjum
45 questions

Question 57

Report Export Collapse

Exhibit.

Fortinet NSE7_SDW-7.2 image Question 57 27257 09182024190937000000

Which conclusion about the packet debug flow output is correct?

The total number of daily sessions for 10.1.10.1 exceeded the maximum number of concurrent sessions configured in the traffic shaper, and the packet was dropped.
The total number of daily sessions for 10.1.10.1 exceeded the maximum number of concurrent sessions configured in the traffic shaper, and the packet was dropped.
The packet size exceeded the outgoing interface MTU.
The packet size exceeded the outgoing interface MTU.
The number of concurrent sessions for 10.1.10.1 exceeded the maximum number of concurrent sessions configured in the traffic shaper, and the packet was dropped.
The number of concurrent sessions for 10.1.10.1 exceeded the maximum number of concurrent sessions configured in the traffic shaper, and the packet was dropped.
The number of concurrent sessions for 10.1.10.1 exceeded the maximum number of concurrent sessions configured in the firewall policy, and the packet was dropped.
The number of concurrent sessions for 10.1.10.1 exceeded the maximum number of concurrent sessions configured in the firewall policy, and the packet was dropped.
Suggested answer: C
Explanation:

In a Per-IP shaper configuration, if an IP address exceeds the configured concurrent session limit, the message 'Denied by quota check' appears. SD-WAN 7.0 Study Guide page 287

asked 18/09/2024
Tarun Sharma
51 questions

Question 58

Report Export Collapse

Refer to the exhibit.

Fortinet NSE7_SDW-7.2 image Question 58 27258 09182024190937000000

The exhibit shows the SD-WAN rule status and configuration.

Based on the exhibit, which change in the measured latency will make T_MPLS_0 the new preferred member?

When T_INET_0_0 and T_MPLS_0 have the same latency.
When T_INET_0_0 and T_MPLS_0 have the same latency.
When T_MPLS_0 has a latency of 100 ms.
When T_MPLS_0 has a latency of 100 ms.
When T_INET_0_0 has a latency of 250 ms.
When T_INET_0_0 has a latency of 250 ms.
When T_N1PLS_0 has a latency of 80 ms.
When T_N1PLS_0 has a latency of 80 ms.
Suggested answer: D
asked 18/09/2024
Maurice Sterkenburg
39 questions

Question 59

Report Export Collapse

Refer to the exhibits.

Exhibit A -

Fortinet NSE7_SDW-7.2 image Question 59 27259 09182024190937000000

Exhibit B -

Fortinet NSE7_SDW-7.2 image Question 59 27259 09182024190937000000

Exhibit A shows the traffic shaping policy and exhibit B shows the firewall policy.

The administrator wants FortiGate to limit the bandwidth used by YouTube. When testing, the administrator determines that FortiGate does not apply traffic shaping on YouTube traffic.

Based on the policies shown in the exhibits, what configuration change must be made so FortiGate performs traffic shaping on YouTube traffic?

Become a Premium Member for full access
  Unlock Premium Member

Question 60

Report Export Collapse

What is a benefit of using application steering in SD-WAN?

Become a Premium Member for full access
  Unlock Premium Member
Total 99 questions
Go to page: of 10
Open VPLUS File
Convert VPLUS to PDF

Related questions

Refer to the exhibit. Based on the output shown in the exhibit, which two criteria on the SD-WAN member configuration can be used to select an outgoing interface in an SD-WAN rule? (Choose two.)
In which SD-WAN template field can you use a metadata variable?
Refer to the exhibit. The exhibit shows the details of a session and the index numbers of some relevant interfaces on a FortiGate appliance that supports hardware offloading. Based on the information shown in the exhibits, which two statements about the session are true? (Choose two.)
What are two reasons for using FortiManager to organize and manage the network for a group of FortiGate devices? (Choose two.)
Which two statements describe how IPsec phase 1 main mode id different from aggressive mode when performing IKE negotiation? (Choose two.)
Refer to the exhibit. Based on the exhibit, which two actions does FortiGate perform on sessions after a firewall policy change? (Choose two.)
Refer to the exhibit. Based on the exhibit, which two statements are correct about the health of the selected members? (Choose two.)
What are two benefits of using the Internet service database (ISDB) in an SD-WAN rule? (Choose two.)
Refer to the exhibit. In a dual-hub hub-and-spoke SD-WAN deployment, which is a benefit of disabling the anti-replay setting on the hubs?
Refer to the exhibit. Which statement explains the output shown in the exhibit?