ExamGecko
Question list
Search
Search

Question 63 - NSE4_FGT-7.2 discussion

Report
Export

Refer to the exhibit.

A network administrator is troubleshooting an IPsec tunnel between two FortiGate devices. The administrator has determined that phase 1 status is up. but phase 2 fails to come up.

Based on the phase 2 configuration shown in the exhibit, what configuration change will bring phase 2 up?

A.
On HQ-FortiGate, enable Auto-negotiate.
Answers
A.
On HQ-FortiGate, enable Auto-negotiate.
B.
On Remote-FortiGate, set Seconds to 43200.
Answers
B.
On Remote-FortiGate, set Seconds to 43200.
C.
On HQ-FortiGate, enable Diffie-Hellman Group 2.
Answers
C.
On HQ-FortiGate, enable Diffie-Hellman Group 2.
D.
On HQ-FortiGate, set Encryption to AES256.
Answers
D.
On HQ-FortiGate, set Encryption to AES256.
Suggested answer: D

Explanation:

Encryption and authentication algorithm needs to match in order for IPSEC be successfully established.

asked 18/09/2024
Katherine Messick
37 questions
User
Your answer:
0 comments
Sorted by

Leave a comment first