Refer to the exhibit. You deployed an HA active-passive FortiGate VM in Microsoft Azure.
Which two statements regarding this particular deployment are true? (Choose two.)
A. Use the vdom-excepticn command to synchronize the configuration.
B. During the failover, the passive FortiGate issues API calls to Azure
C. There is no SLA for API calls from Microsoft Azure.
D. By default, the configuration does not synchromze between the primary and secondary devices.
正解:B,D
解説: (Pass4Test メンバーにのみ表示されます)
質問 2:
An administrator decides to use the Use managed identity option on the FortiGate SDN connector with Microsoft Azure However, the SDN connector is failing on the connection What must the administrator do to correct this issue?
A. Make sure to add the Client secret on FortiGate side of the configuration
B. Make sure to set the type to system managed identity on FortiGate SDN connector settings
C. Make sure to add the Tenant ID on FortiGate side of the configuration
D. Make sure to enable the system assigned managed identity on Azure
正解:D
解説: (Pass4Test メンバーにのみ表示されます)
質問 3:
Refer to the exhibit. A customer has deployed an environment in Amazon Web Services (AWS) and is now trying to send outbound traffic from the Linux1 and Linux2 instances to the internet through the security VPC (virtual private cloud). The FortiGate policies are configured to allow all outbound traffic; however, the traffic is not reaching the FortiGate internal interface. Assume there are no issues with the Transit Gateway (TGW) configuration.
Which two settings must the customer add to correct the issue? (Choose two.)
A. Both landing subnets in the spoke VPCs must have a 0.0.0.0/0 traffic route to the TGW
B. Both landing subnets in the spoke VPCs must have a 0.0.0.0/0 traffic route to the Internet Gateway (IOW).
C. The four landing subnets in all the VPCs must have a 0.0.0.0/0 traffic route to the TGW
D. Both landing subnets in the security VPC must have a 0.0.0.0/0 traffic route to the FortiGate port2.
正解:A,D
解説: (Pass4Test メンバーにのみ表示されます)
質問 4:
Refer to the exhibit. You are tasked with deploying a webserver and FortiGate VMS in AWS. You are using Terraform to automate the process.
Which two important details should you know about the Terraform files? (Choose two.)
A. After the deployment, Terraform output values are visible only through AWS CloudShell.
B. The subnet_private 1 value is defined in the variables . tf file
C. You must specify all the AWS credentials in the output. of file.
D. All the output values are available after a successful terraform apply command
正解:B,D
解説: (Pass4Test メンバーにのみ表示されます)
質問 5:
What is the main advantage of using SD-WAN Transit Gateway Connect over traditional SD- WAN?
A. You can combine it with IPsec to achieve higher bandwidth
B. You can use GRE-based tunnel attachments
C. You can use BGP over IPsec for maximum throughput
D. It eliminates the use of ECMP
正解:B
解説: (Pass4Test メンバーにのみ表示されます)
質問 6:
You need a solution to safeguard public cloud-hosted web applications from the OWASP Top 10 vulnerabilities. The solution must support the same region in which your applications reside, with minimum traffic cost.
Which solution meets the requirements?
A. Use FortiGate
B. Use FortiCNP
C. Use FortiADC
D. Use FortiWebCloud
正解:D
解説: (Pass4Test メンバーにのみ表示されます)
質問 7:
Refer to the exhibit. What would be the impact of confirming to delete all the resources in Terraform?
A. It destroys all the resources tied to the AWS Identity and Access Management (1AM) user.
B. It destroys all the resources in the resource group
C. It destroys all the resources in the state file.
D. It destroys all the resources in the . tfvars file
正解:C
解説: (Pass4Test メンバーにのみ表示されます)
Takahashi -
テスト本番ではほぼ同じような問題次々と出てきました。Pass4Testにかんしゃです。いつも信頼しています。