ExamGecko
Search Search Login
Home Home / Fortinet / NSE6_FAZ-7.2
Question list
Search
Search
Open VPLUS File
Convert VPLUS to PDF

Related questions

Which process caches logs on FortiGate when FortiAnalyzer is not readable?
In a Fortinet Security Fabric, what can make an upstream FortiGate create traffic logs associated with sessions initiated on downstream FortiGate devices?
What are analytics logs on FortiAnalyzer?
Which statement is true about ADOMs?
Which statement is true about using aggregation mode on FortiAnalyzer?
You finished registering a FortiGate device. After traffic starts to flow through FortiGate. you notice that only some of the logs expected are being received on FortiAnalyzer. What could be the reason for the logs not arriving on FortiAnalyzer?
Which two of the available registration methods place the device automatically in its assigned ADOM? (Choose two.)
Refer to the exhibit. The image displays 'he configuration of a FortiAnalyzer the administrator wants to join to an existing HA cluster. What can you conclude from the configuration displayed?
Which command can you use to find the IP addresses of the devices sending logs to FortiAnalyzer?
Which feature can you configure to add redundancy to FortiAnalyzer?

Question 17 - NSE6_FAZ-7.2 discussion

Report
Export

Which statement is true about the communication between FortiGate high availability (HA) clusters and FortiAnalyzer?

A.
Each cluster member sends its logs directly to FortiAnalyzer.
Answers
A.
Each cluster member sends its logs directly to FortiAnalyzer.
B.
You must add the device lo the cluster first, and then registers the cluster with FortiAnalyzer.
Answers
B.
You must add the device lo the cluster first, and then registers the cluster with FortiAnalyzer.
C.
FortiAnalyzer distinguishes each cluster member by its MAC address.
Answers
C.
FortiAnalyzer distinguishes each cluster member by its MAC address.
D.
Only the primary device in the cluster communicates with FortiAnalyzer.
Answers
D.
Only the primary device in the cluster communicates with FortiAnalyzer.
Suggested answer: D

Explanation:

In a FortiGate high availability (HA) cluster, only the primary device sends its logs to the FortiAnalyzer. This is to ensure that logs are not duplicated between the primary and secondary devices in the cluster. The configuration of the FortiAnalyzer server on the FortiGate is such that the HA primary device is set as the server that forwards the logs.

Reference: FortiAnalyzer 7.4.1 Administration Guide, sections mentioning HA cluster configuration and log forwarding.

Show Answer
asked 18/09/2024
Ramon Pasay
40 questions
PreviousPreviousNextNext
User
Your answer:
0 comments
Sorted by

Leave a comment first

ExamGecko

Copyright @2023 ExamGecko | All right reserved

Mail us: [email protected]
About us
Contact us
Twitter X
Facebook
Medium
Convert VPLUS to PDF
Open VPLUS files Easily and Quickly
Privacy Policy
Disclaimer
Terms