Home

Home / Fortinet / NSE7_OTS-7.2

Question list

List of questions

Question 1

(0)

What are two benefits of a Nozomi integration with FortiNAC? (Choose two.)

Question 2

(0)

Which three criteria can a FortiGate device use to look for a matching firewall policy to process traffic? (Choose three.)

Question 3

(0)

Refer to the exhibit and analyze the output. Which statement about the output is true?

Question 4

(0)

Which three Fortinet products can be used for device identification in an OT industrial control system (ICS)? (Choose three.)

Question 5

(0)

Refer to the exhibit In the topology shown in the exhibit, both PLCs can communicate directly with each other, without going through the firewall. Which statement about the topology is true?

Question 6

(0)

In a wireless network integration, how does FortiNAC obtain connecting MAC address information?

Question 7

(0)

Which three common breach points can be found in a typical OT environment? (Choose three.)

Question 8

(0)

Refer to the exhibit. You are navigating through FortiSIEM in an OT network. How do you view information presented in the exhibit and what does the FortiGate device security status tell you?

Question 9

(0)

An OT network administrator is trying to implement active authentication. Which two methods should the administrator use to achieve this? (Choose two.)

Question 10

(0)

Refer to the exhibit. An OT administrator ran a report to identify device inventory in an OT network. Based on the report results, which report was run?

Open VPLUS File

Convert VPLUS to PDF

Related questions

An OT network consists of multiple FortiGate devices. The edge FortiGate device is deployed as the secure gateway and is only allowing remote operators to access the ICS networks on site. Management hires a third-party company to conduct health and safety on site. The third-party company must have outbound access to external resources. As the OT network administrator, what is the best scenario to provide external access to the third-party company while continuing to secure the ICS networks?

Refer to the exhibit. You are assigned to implement a remote authentication server in the OT network. Which part of the hierarchy should the authentication server be part of?

To increase security protection in an OT network, how does application control on ForliGate detect industrial traffic?

An OT architect has deployed a Layer 2 switch in the OT network at Level 1 the Purdue model-process control. The purpose of the Layer 2 switch is to segment traffic between PLC1 and PLC2 with two VLANs. All the traffic between PLC1 and PLC2 must first flow through the Layer 2 switch and then through the FortiGate device in the Level 2 supervisory control network. What statement about the traffic between PLC1 and PLC2 is true?

As an OT administrator, it is important to understand how industrial protocols work in an OT network. Which communication method is used by the Modbus protocol?

An OT administrator is defining an incident notification policy using FortiSIEM and would like to configure the system with a notification policy. If an incident occurs, the administrator would like to be able to intervene and block an IP address or disable a user in Active Directory from FortiSIEM. Which step must the administrator take to achieve this task?

With the limit of using one firewall device, the administrator enables multi-VDOM on FortiGate to provide independent multiple security domains to each ICS network. Which statement ensures security protection is in place for all ICS networks?

As an OT network administrator, you are managing three FortiGate devices that each protect different levels on the Purdue model. To increase traffic visibility, you are required to implement additional security measures to detect exploits that affect PLCs. Which security sensor must implement to detect these types of industrial exploits?

Which three common breach points can be found in a typical OT environment? (Choose three.)

Refer to the exhibit. An OT architect has implemented a Modbus TCP with a simulation server Conpot to identify and control the Modus traffic in the OT network. The FortiGate-Edge device is configured with a software switch interface ssw-01. Based on the topology shown in the exhibit, which two statements about the successful simulation of traffic between client and server are true? (Choose two.)

Question 2 - NSE7_OTS-7.2 discussion

Report

Which three criteria can a FortiGate device use to look for a matching firewall policy to process traffic? (Choose three.)

A.

Services defined in the firewall policy.

B.

Source defined as internet services in the firewall policy

C.

Lowest to highest policy ID number

D.

Destination defined as internet services in the firewall policy

E.

Highest to lowest priority defined in the firewall policy

Show Answer

asked 18/09/2024

Patrick Neason

32 questions

User

Your answer: A B C D E

0 comments

Sorted by

Leave a comment first