698 お客様のコメント
クリック」
質問 1:
View the IPS exit log, and then answer the question below.
# diagnose test application ipsmonitor 3
ipsengine exit log"
pid = 93 (cfg), duration = 5605322 (s) at Wed Apr 19 09:57:26 2017
code = 11, reason: manual
What is the status of IPS on this FortiGate?
A. All IPS-related features have been disabled in FortiGate's configuration.
B. There are communication problems between the IPS engine and the management database.
C. IPS daemon experienced a crash.
D. IPS engine memory consumption has exceeded the model-specific predefined value.
正解:A
解説: (Pass4Test メンバーにのみ表示されます)
質問 2:
Refer to the exhibit, which contains partial outputs from two routing debug commands.
Why is the port2 default route not in the second command's output?
A. It has a higher distance than the default route using port1.
B. It has a higher priority value than the default route using port1.
C. It has a lower priority value than the default route using port1.
D. It is disabled in the FortiGate configuration.
正解:A
質問 3:
Examine the output of the 'get router info bgp summary' command shown in the exhibit; then answer the question below.
Which statements are true regarding the output in the exhibit? (Choose two.)
A. The local BGP peer has received a total of 3 BGP prefixes.
B. BGP state of the peer 10.125.0.60 is Established.
C. Local BGP peer has not received an OpenConfirm from 10.200.3.1.
D. BGP peer 10.200.3.1 has never been down since the BGP counters were cleared.
正解:B,C
質問 4:
View the exhibit, which contains a partial output of an IKE real-time debug, and then answer the question below.
Based on the debug output, which phase-1 setting is enabled in the configuration of this VPN?
A. auto-discovery-forwarder
B. auto-discovery-shortcut
C. auto-discovery-sender
D. auto-discovery-receiver
正解:A
質問 5:
View the exhibit, which contains the partial output of an IKE real-time debug, and then answer the question below.
Why didn't the tunnel come up?
A. The remote gateway is using aggressive mode and the local gateway is configured to use man mode.
B. The pre-shared keys do not match.
C. The remote gateway's phase 1 configuration does not match the local gateway's phase 1 configuration.
D. The remote gateway's phase 2 configuration does not match the local gateway's phase 2 configuration.
正解:C
質問 6:
Examine the output from the 'diagnose vpn tunnel list' command shown in the exhibit; then answer the question below.
Which command can be used to sniffer the ESP traffic for the VPN DialUP_0?
A. diagnose sniffer packet any 'port 4500'
B. diagnose sniffer packet any 'port 500'
C. diagnose sniffer packet any 'host 10.0.10.10'
D. diagnose sniffer packet any 'esp'
正解:A
解説: (Pass4Test メンバーにのみ表示されます)
質問 7:
Four FortiGate devices configured for OSPF connected to the same broadcast domain. The first unit is elected as the designated router The second unit is elected as the backup designated router Under normal operation, how many OSPF full adjacencies are formed to each of the other two units?
A. 4
B. 1
C. 3
D. 2
正解:D
View the IPS exit log, and then answer the question below.
# diagnose test application ipsmonitor 3
ipsengine exit log"
pid = 93 (cfg), duration = 5605322 (s) at Wed Apr 19 09:57:26 2017
code = 11, reason: manual
What is the status of IPS on this FortiGate?
A. All IPS-related features have been disabled in FortiGate's configuration.
B. There are communication problems between the IPS engine and the management database.
C. IPS daemon experienced a crash.
D. IPS engine memory consumption has exceeded the model-specific predefined value.
正解:A
解説: (Pass4Test メンバーにのみ表示されます)
質問 2:
Refer to the exhibit, which contains partial outputs from two routing debug commands.
Why is the port2 default route not in the second command's output?
A. It has a higher distance than the default route using port1.
B. It has a higher priority value than the default route using port1.
C. It has a lower priority value than the default route using port1.
D. It is disabled in the FortiGate configuration.
正解:A
質問 3:
Examine the output of the 'get router info bgp summary' command shown in the exhibit; then answer the question below.
Which statements are true regarding the output in the exhibit? (Choose two.)
A. The local BGP peer has received a total of 3 BGP prefixes.
B. BGP state of the peer 10.125.0.60 is Established.
C. Local BGP peer has not received an OpenConfirm from 10.200.3.1.
D. BGP peer 10.200.3.1 has never been down since the BGP counters were cleared.
正解:B,C
質問 4:
View the exhibit, which contains a partial output of an IKE real-time debug, and then answer the question below.
Based on the debug output, which phase-1 setting is enabled in the configuration of this VPN?
A. auto-discovery-forwarder
B. auto-discovery-shortcut
C. auto-discovery-sender
D. auto-discovery-receiver
正解:A
質問 5:
View the exhibit, which contains the partial output of an IKE real-time debug, and then answer the question below.
Why didn't the tunnel come up?
A. The remote gateway is using aggressive mode and the local gateway is configured to use man mode.
B. The pre-shared keys do not match.
C. The remote gateway's phase 1 configuration does not match the local gateway's phase 1 configuration.
D. The remote gateway's phase 2 configuration does not match the local gateway's phase 2 configuration.
正解:C
質問 6:
Examine the output from the 'diagnose vpn tunnel list' command shown in the exhibit; then answer the question below.
Which command can be used to sniffer the ESP traffic for the VPN DialUP_0?
A. diagnose sniffer packet any 'port 4500'
B. diagnose sniffer packet any 'port 500'
C. diagnose sniffer packet any 'host 10.0.10.10'
D. diagnose sniffer packet any 'esp'
正解:A
解説: (Pass4Test メンバーにのみ表示されます)
質問 7:
Four FortiGate devices configured for OSPF connected to the same broadcast domain. The first unit is elected as the designated router The second unit is elected as the backup designated router Under normal operation, how many OSPF full adjacencies are formed to each of the other two units?
A. 4
B. 1
C. 3
D. 2
正解:D
乙叶 -
ありがとうございました。NSE7_EFW-6.4試験に一発で合格したい人にはピッタリだと思う