1205 お客様のコメント
質問 1:
Which of the following IPsec parameters is a phase 2 configuration setting?
Response:
A. Peer ID
B. eXtended Authentication (XAuth)
C. Authentication method
D. Quick mode selectors
正解:D
質問 2:
Examine the log message attributes. Which statements are correct?
(Choose two.)
hostname=www.youtube.com profiletype="Webfilter_Profile"
profile="default"
status="passthrough"
msg="URL belongs to a category with warnings enabled"
Response:
A. The user was prompted whether to proceed or go back.
B. The category action was set to warning.
C. The website was allowed on the first attempt
D. The user failed authentication
正解:A,B
質問 3:
An administrator wants to monitor their network for any probing attempts aimed to exploit existing vulnerabilities in their servers. What must they configure on their FortiGate to accomplish this?
(Choose two.)
Response:
A. A web application firewall profile to check protocol constraints.
B. An IPS sensor to monitor all signatures applicable to the server.
C. A DoS policy, and log all UDP and TCP scan attempts.
D. An application control profile and set all application signatures to monitor.
正解:B,C
質問 4:
To which remote devices can FortiGate send logs?
(Choose three.)
Response:
A. Hard drive
B. Syslog
C. FortiCloud
D. FortiAnalyzer
E. Memory
正解:A,B,D
質問 5:
A FortiGate interface is configured with the following commands:
What statements about the configuration are correct?
(Choose two.)
Response:
A. FortiGate can provide IPv6 addresses to DHCPv6 client.
B. FortiGate can send IPv6 router advertisements (RAs.)
C. IPv6 clients connected to port1 can use SLAAC to generate their IPv6 addresses.
D. FortiGate can provide DNS settings to IPv6 clients.
正解:B,C
質問 6:
View the Exhibit.
The administrator needs to confirm that FortiGate 2 is properly routing that traffic to the
10.0.1.0/24 subnet. The administrator needs to confirm it by sending ICMP pings to FortiGate 2 from the CLI of FortiGate 1.
What ping option needs to be enabled before running the ping?
Response:
A. Execute ping-options source port1
B. Execute ping-options source 10.200.1.1.
C. Execute ping-options source 10.200.1.2
D. Execute ping-options source 10.0.1.254
正解:D
Which of the following IPsec parameters is a phase 2 configuration setting?
Response:
A. Peer ID
B. eXtended Authentication (XAuth)
C. Authentication method
D. Quick mode selectors
正解:D
質問 2:
Examine the log message attributes. Which statements are correct?
(Choose two.)
hostname=www.youtube.com profiletype="Webfilter_Profile"
profile="default"
status="passthrough"
msg="URL belongs to a category with warnings enabled"
Response:
A. The user was prompted whether to proceed or go back.
B. The category action was set to warning.
C. The website was allowed on the first attempt
D. The user failed authentication
正解:A,B
質問 3:
An administrator wants to monitor their network for any probing attempts aimed to exploit existing vulnerabilities in their servers. What must they configure on their FortiGate to accomplish this?
(Choose two.)
Response:
A. A web application firewall profile to check protocol constraints.
B. An IPS sensor to monitor all signatures applicable to the server.
C. A DoS policy, and log all UDP and TCP scan attempts.
D. An application control profile and set all application signatures to monitor.
正解:B,C
質問 4:
To which remote devices can FortiGate send logs?
(Choose three.)
Response:
A. Hard drive
B. Syslog
C. FortiCloud
D. FortiAnalyzer
E. Memory
正解:A,B,D
質問 5:
A FortiGate interface is configured with the following commands:
What statements about the configuration are correct?
(Choose two.)
Response:
A. FortiGate can provide IPv6 addresses to DHCPv6 client.
B. FortiGate can send IPv6 router advertisements (RAs.)
C. IPv6 clients connected to port1 can use SLAAC to generate their IPv6 addresses.
D. FortiGate can provide DNS settings to IPv6 clients.
正解:B,C
質問 6:
View the Exhibit.
The administrator needs to confirm that FortiGate 2 is properly routing that traffic to the
10.0.1.0/24 subnet. The administrator needs to confirm it by sending ICMP pings to FortiGate 2 from the CLI of FortiGate 1.
What ping option needs to be enabled before running the ping?
Response:
A. Execute ping-options source port1
B. Execute ping-options source 10.200.1.1.
C. Execute ping-options source 10.200.1.2
D. Execute ping-options source 10.0.1.254
正解:D
Kawakami -
1度目で楽にNSE4_FGT-5.6の試験に合格できた。勉強時間は20時間ほど。Pass4TestのNSE4_FGT-5.6問題集のおかげです。