ExamGecko
Search Search Login
Home Home / Fortinet / FCP_FAZ_AD-7.4
Question list
Search
Search
Open VPLUS File
Convert VPLUS to PDF

Related questions

Which two statements regarding FortiAnalyzer log forwarding modes are true? (Choose two.)
Refer to the exhibit. Which image corresponds to the packet capture shown in the exhibit? A) B) C) D)
What does the disk status Degraded mean for RAID management?
Refer to the exhibit. The exhibit shows the creation of a new administrator on FortiAnalyzer. The new account uses the credentials stored on an LDAP server. Why would an administrator configure a password for this account?
What are offline logs on FortiAnalyzer?
What is the purpose of the FortiAnalyzer command diagnose system print netstat?
An administrator has moved a FortiGate device from the root ADOM to ADOM1. Which two statements are true regarding logs? (Choose two.)
Which two statements about deleting ADOMs are true? (Choose two.)
What is the best approach to handle a hard disk failure on a FortiAnalyzer that supports hardware RAID?
Which two parameters are used to calculate the Total Quota value available on FortiAnalyzer? (Choose two.)

Question 23 - FCP_FAZ_AD-7.4 discussion

Report
Export

Which two statements regarding FortiAnalyzer log forwarding modes are true? (Choose two.)

A.

Both modes, forwarding and aggregation, support encryption of logs between devices.

Answers
A.

Both modes, forwarding and aggregation, support encryption of logs between devices.

B.

In aggregation mode, you can forward logs to syslog and CEF servers.

Answers
B.

In aggregation mode, you can forward logs to syslog and CEF servers.

C.

Forwarding mode forwards logs in real time only to other FortiAnalyzer devices.

Answers
C.

Forwarding mode forwards logs in real time only to other FortiAnalyzer devices.

D.

Aggregation mode stores logs and content files and uploads them to another FortiAnalyzer device at a scheduled time.

Answers
D.

Aggregation mode stores logs and content files and uploads them to another FortiAnalyzer device at a scheduled time.

Suggested answer: A, D

Explanation:

Both modes, forwarding and aggregation, support encryption of logs between devices.

Both forwarding and aggregation modes can use encryption to securely transfer logs between FortiAnalyzer devices.

Aggregation mode stores logs and content files and uploads them to another FortiAnalyzer device at a scheduled time.

In aggregation mode, logs are stored and then transferred to another FortiAnalyzer at a scheduled time, rather than in real-time. This mode is typically used when consolidating logs from multiple devices into a central FortiAnalyzer.

The other options are incorrect because:

Forwarding mode sends logs in real-time but not exclusively to other FortiAnalyzer devices; it can also send logs to external systems like syslog servers.

Aggregation mode is primarily for consolidating logs to another FortiAnalyzer and doesn't focus on forwarding logs to syslog or CEF servers.

Show Answer
asked 10/10/2024
soliman sallam
40 questions
PreviousPreviousNextNext
User
Your answer:
0 comments
Sorted by

Leave a comment first

ExamGecko

Copyright @2023 ExamGecko | All right reserved

Mail us: [email protected]
About us
Contact us
Twitter X
Facebook
Medium
Convert VPLUS to PDF
Open VPLUS files Easily and Quickly
Privacy Policy
Disclaimer
Terms