ExamGecko
Question list
Search
Search

List of questions

Search

Related questions











Question 10 - NSE8_812 discussion

Report
Export

Refer to the exhibit.

You have deployed a security fabric with three FortiGate devices as shown in the exhibit. FGT_2 has the following configuration:

FGT_1 and FGT_3 are configured with the default setting. Which statement is true for the synchronization of fabric-objects?

A.
Objects from the FortiGate FGT_2 will be synchronized to the upstream FortiGate.
Answers
A.
Objects from the FortiGate FGT_2 will be synchronized to the upstream FortiGate.
B.
Objects from the root FortiGate will only be synchronized to FGT__2.
Answers
B.
Objects from the root FortiGate will only be synchronized to FGT__2.
C.
Objects from the root FortiGate will not be synchronized to any downstream FortiGate.
Answers
C.
Objects from the root FortiGate will not be synchronized to any downstream FortiGate.
D.
Objects from the root FortiGate will only be synchronized to FGT_3.
Answers
D.
Objects from the root FortiGate will only be synchronized to FGT_3.
Suggested answer: A

Explanation:

The security fabric shown in the exhibit consists of three FortiGate devices connected in a hierarchical topology, where FGT_1 is the root device, FGT_2 is a downstream device, and FGT_3 is a downstream device of FGT_2. FGT_2 has a configuration setting that enables fabric-object synchronization for all objects except firewall policies and firewall policy packages (set sync-fabricobjects enable). Fabric-object synchronization is a feature that allows downstream devices to synchronize their objects (such as addresses, services, schedules, etc.) with their upstream devices in a security fabric. This simplifies object management and ensures consistency across devices.

Therefore, in this case, objects from FGT_2 will be synchronized to FGT_1 (the upstream device), but not to FGT_3 (the downstream device). Objects from FGT_1 will not be synchronized to any downstream device because the default setting for fabric-object synchronization is disabled. Objects from FGT_3 will not be synchronized to any device because it does not have fabric-object synchronization enabled. Reference:

https://docs.fortinet.com/document/fortigate/7.0.0/administration-guide/19662/fabric-objectsynchronization

asked 18/09/2024
Roger Perez Espitia
38 questions
User
Your answer:
0 comments
Sorted by

Leave a comment first