ExamGecko
Home / Fortinet / NSE8_812 / List of questions
Ask Question

Fortinet NSE8_812 Practice Test - Questions Answers, Page 3

Add to Whishlist

List of questions

Question 21

Report Export Collapse

Refer to the exhibits.

Fortinet NSE8_812 image Question 21 63877670106547246435344

Fortinet NSE8_812 image Question 21 63877670106547246435344

A customer wants to deploy 12 FortiAP 431F devices on high density conference center, but they do not currently have any PoE switches to connect them to. They want to be able to run them at full power while having network redundancy

From the FortiSwitch models and sample retail prices shown in the exhibit, which build of materials would have the lowest cost, while fulfilling the customer's requirements?

Become a Premium Member for full access
  Unlock Premium Member

Question 22

Report Export Collapse

Refer to the exhibits.

Fortinet NSE8_812 image Question 22 63877670106781615010592

Fortinet NSE8_812 image Question 22 63877670106781615010592

A customer is looking for a solution to authenticate the clients connected to a hardware switch interface of a FortiGate 400E.

Referring to the exhibits, which two conditions allow authentication to the client devices before assigning an IP address? (Choose two.)

Become a Premium Member for full access
  Unlock Premium Member

Question 23

Report Export Collapse

You want to use the MTA adapter feature on FortiSandbox in an HA-Cluster. Which statement about this solution is true?

Become a Premium Member for full access
  Unlock Premium Member

Question 24

Report Export Collapse

Refer to the exhibit showing the history logs from a FortiMail device.

Fortinet NSE8_812 image Question 24 63877670106875362699793

Which FortiMail email security feature can an administrator enable to treat these emails as spam?

Become a Premium Member for full access
  Unlock Premium Member

Question 25

Report Export Collapse

Refer to the exhibits, which show a firewall policy configuration and a network topology.

Fortinet NSE8_812 image Question 25 6387767010725035288845

An administrator has configured an inbound SSL inspection profile on a FortiGate device (FG-1) that is protecting a data center hosting multiple web pages-Given the scenario shown in the exhibits, which certificate will FortiGate use to handle requests to xyz.com?

Become a Premium Member for full access
  Unlock Premium Member

Question 26

Report Export Collapse

Refer to the exhibits.

Fortinet NSE8_812 image Question 26 6387767010792221101864

A FortiGate cluster (CL-1) protects a data center hosting multiple web applications. A pair of FortiADC devices are already configured for SSL decryption (FAD-1), and re-encryption (FAD-2). CL-1 must accept unencrypted traffic from FAD-1, perform application detection on the plain-text traffic, and forward the inspected traffic to FAD-2.

The SSL-Offload-App-Detect application list and SSL-Offload protocol options profile are applied to the firewall policy handling the web application traffic on CL-1.

Given this scenario, which two configuration tasks must the administrator perform on CL-1? (Choose two.)

A)

Fortinet NSE8_812 image Question 26 6387767010792221101864

B)

Fortinet NSE8_812 image Question 26 6387767010792221101864

Fortinet NSE8_812 image Question 26 6387767010792221101864

Fortinet NSE8_812 image Question 26 6387767010792221101864

Become a Premium Member for full access
  Unlock Premium Member

Question 27

Report Export Collapse

You are migrating the branches of a customer to FortiGate devices. They require independent routing tables on the LAN side of the network.

After reviewing the design, you notice the firewall will have many BGP sessions as you have two data centers (DC) and two ISPs per DC while each branch is using at least 10 internal segments.

Based on this scenario, what would you suggest as the more efficient solution, considering that in the future the number of internal segments, DCs or internet links per DC will increase?

Become a Premium Member for full access
  Unlock Premium Member

Question 28

Report Export Collapse

You must analyze an event that happened at 20:37 UTC. One log relevant to the event is extracted from FortiGate logs:

Fortinet NSE8_812 image Question 28 63877670107937835365982

The devices and the administrator are all located in different time zones Daylight savings time (DST) is disabled

* The FortiGate is at GMT-1000.

* The FortiAnalyzer is at GMT-0800

* Your browser local time zone is at GMT-03.00

You want to review this log on FortiAnalyzer GUI, what time should you use as a filter?

Become a Premium Member for full access
  Unlock Premium Member

Question 29

Report Export Collapse

A customer is planning on moving their secondary data center to a cloud-based laaS. They want to place all the Oracle-based systems Oracle Cloud, while the other systems will be on Microsoft Azure with ExpressRoute service to their main data center.

They have about 200 branches with two internet services as their only WAN connections. As a security consultant you are asked to design an architecture using Fortinet products with security, redundancy and performance as a priority.

Which two design options are true based on these requirements? (Choose two.)

Become a Premium Member for full access
  Unlock Premium Member

Question 30

Report Export Collapse

Refer to the exhibit, which shows the high availability configuration for the FortiAuthenticator (FAC1).

Fortinet NSE8_812 image Question 30 63877670108094080916148

Based on this information, which statement is true about the next FortiAuthenticator (FAC2) member that will join an HA cluster with this FortiAuthenticator (FAC1)?

Become a Premium Member for full access
  Unlock Premium Member
Total 105 questions
Go to page: of 11
Search

Related questions