Refer to the exhibit, which contains the output of get system ha status.
Which two statements about the output are true? (Choose two.)
A. port7 is used as the HA heartbeat on all devices in the cluster.
B. Primary is selected based on the priority configured under config system ha.
C. The HA management IP is 169.254.0.2.
D. The slave configuration is synchronized with the master.
正解:A,B
質問 2:
Examine the output of the 'get router info ospf interface' command shown in the exhibit; then answer the question below.

Which statements are true regarding the above output? (Choose two.)
A. There are at least 5 OSPF routers connected to the port4 network.
B. The local FortiGate has been elected as the OSPF backup designated router.
C. Two OSPF routers are down in the port4 network.
D. The port4 interface is connected to the OSPF backbone area.
正解:A,D
解説: (Pass4Test メンバーにのみ表示されます)
質問 3:
View the IPS exit log, and then answer the question below.
# diagnose test application ipsmonitor 3
ipsengine exit log"
pid = 93 (cfg), duration = 5605322 (s) at Wed Apr 19 09:57:26 2017
code = 11, reason: manual
What is the status of IPS on this FortiGate?
A. All IPS-related features have been disabled in FortiGate's configuration.
B. There are communication problems between the IPS engine and the management database.
C. IPS daemon experienced a crash.
D. IPS engine memory consumption has exceeded the model-specific predefined value.
正解:A
解説: (Pass4Test メンバーにのみ表示されます)
質問 4:
Refer to the exhibit, which contains partial output from an IKE real-time debug.

Which two statements about this debug output are correct? (Choose two.)
A. The initiator provided remote as its IPsec peer ID.
B. The negotiation is using AES128 encryption with CBC hash.
C. The remote gateway IP address is 10.0.0.1.
D. It shows a phase 1 negotiation.
正解:A,D
質問 5:
What does the dirty flag mean in a FortiGate session?
A. The next packet must be re-evaluated against the firewall policies.
B. Traffic has been identified as from an application that is not allowed.
C. Traffic has been blocked by the antivirus inspection.
D. The session must be removed from the former primary unit after an HA failover.
正解:A
解説: (Pass4Test メンバーにのみ表示されます)
777 お客様のコメント
クリック」





瀬戸** -
身近なところから順番に学習できるようになっている点も良い点です。詳細解説で合格を掴みとりました。無駄なく効率よくNSE7_EFW-6.4を学べるとおもう。