質問 1:
Click the Exhibit button.
You have installed a FortiSandbox and configured it in your FortiMail. Referring to the exhibit, which two statements are correct? (Choose two.)
A. If the FortiSandbox with IP 10.10 10 3 is not available, the e-mail will be checked by the FortiCloud Sandbox.
B. FortiMail will wait for 30 minutes to obtain the scan results.
C. FortiMail will cache the results for 30 minutes.
D. If FortiMail is not able to obtain the results from the fortiGuard quenes. URls will not be checked by the FortiSandbox.
正解:B,D
質問 2:
Click the Exhibit button.
The exhibit shows a full-mesh topology between FortiGates and FortiSwitches. To deploy this configuration, two requirements must be met:
-20 Gbps full duplex connectivity is available between each FortiGate and the FortiSwitches
-The FortiGate HA must be in AP mode.
Referring to the exhibit, what are two actions that will fulfill the requirements? (Choose two.)
A. Configure both FortiSwitches as peers ISL over cable on create one MCLAG on ports connected cables A and C, and ceate another MCLAG on ports connected to cables B and D.
B. Configure the master FortiGate with one and FortiLink split interface disable on ports connected to cables A and C and make sure the same ports are used for to cables B and D.
C. Configure the master FortiGate with one LAG and FortiLink split interface enables on ports connected to cable A and C make sure the ports are used for cables B and D on the slave.
D. Configure both FortiSwitch as pears with ICL over cable E, create one MCLAG on ports connected to cables A and C, and create another MCLAG on ports connected to cables B and D.
正解:C,D
質問 3:
Click the Exhibit button.
You configured an IPsec tunnel to a branch office. Now you want to make sure that the encryption of the tunnel is offloaded to hardware.
Referring to the exhibit, which statement is true?
A. Traffic is not offloaded.
B. Outgoing traffic is offloaded: incoming traffic not offloaded.
C. Incoming and outgoing traffic is offloaded
D. Outgoing traffic is offloaded, you cannot determine if incoming traffic is offloaded at this time.
正解:B
質問 4:
Click the Exhibit button.
Only users authenticated in FortiGate-B can reach the server. A customer wants to deploy a single sign-on solution for IPsec VPN users. Once a user is connected and authenticated to the VPN in FortiGate-A, the user does not need to authenticate again in FortiGate -B to reach the server.
Which two actions satisfy this requirement? (Choose two.)
A. FortiGate-A must generate a RADUIS accounting packets.
B. Use Kerberos authentication.
C. Use the Collector Agent.
D. Use FortiAuthenticator.
正解:A,D
質問 5:
An organization has one central site And three remote sites. A FotiSIEM has been drafted on the central site and now all devices across the remote sites need to be monitored by the FortiSlEM.
When action would reduce the WAN usage by the monitoring system?
A. Disable monitoring on the remote sites during the day.
B. Install local Collection remote site.
C. Deploy a single Supervisor on the central site and enable WAN optimize on the WAN gateways.
D. install a Supervisor and a Collector for each remote site.
正解:B
質問 6:
An old router has been replaced by a FortiWAN device. The FortiWAN has inherited the router's management IP address and now the network administrator needs to remove the old router from the FortiSIEM configuration.
Which two statements are true about this operation? (Choose two.)
A. The old router will be completely deleted from FortiSIEM's CMDB.
B. FortiSIM will move the old router device into the Decommission folder.
C. FotiSEIM needs a special syslog for FortiWAN.
D. FortiSIEM will discover a new device for the FortiWAN with the same IP.
正解:B,D
Click the Exhibit button.
You have installed a FortiSandbox and configured it in your FortiMail. Referring to the exhibit, which two statements are correct? (Choose two.)
A. If the FortiSandbox with IP 10.10 10 3 is not available, the e-mail will be checked by the FortiCloud Sandbox.
B. FortiMail will wait for 30 minutes to obtain the scan results.
C. FortiMail will cache the results for 30 minutes.
D. If FortiMail is not able to obtain the results from the fortiGuard quenes. URls will not be checked by the FortiSandbox.
正解:B,D
質問 2:
Click the Exhibit button.
The exhibit shows a full-mesh topology between FortiGates and FortiSwitches. To deploy this configuration, two requirements must be met:
-20 Gbps full duplex connectivity is available between each FortiGate and the FortiSwitches
-The FortiGate HA must be in AP mode.
Referring to the exhibit, what are two actions that will fulfill the requirements? (Choose two.)
A. Configure both FortiSwitches as peers ISL over cable on create one MCLAG on ports connected cables A and C, and ceate another MCLAG on ports connected to cables B and D.
B. Configure the master FortiGate with one and FortiLink split interface disable on ports connected to cables A and C and make sure the same ports are used for to cables B and D.
C. Configure the master FortiGate with one LAG and FortiLink split interface enables on ports connected to cable A and C make sure the ports are used for cables B and D on the slave.
D. Configure both FortiSwitch as pears with ICL over cable E, create one MCLAG on ports connected to cables A and C, and create another MCLAG on ports connected to cables B and D.
正解:C,D
質問 3:
Click the Exhibit button.
You configured an IPsec tunnel to a branch office. Now you want to make sure that the encryption of the tunnel is offloaded to hardware.
Referring to the exhibit, which statement is true?
A. Traffic is not offloaded.
B. Outgoing traffic is offloaded: incoming traffic not offloaded.
C. Incoming and outgoing traffic is offloaded
D. Outgoing traffic is offloaded, you cannot determine if incoming traffic is offloaded at this time.
正解:B
質問 4:
Click the Exhibit button.
Only users authenticated in FortiGate-B can reach the server. A customer wants to deploy a single sign-on solution for IPsec VPN users. Once a user is connected and authenticated to the VPN in FortiGate-A, the user does not need to authenticate again in FortiGate -B to reach the server.
Which two actions satisfy this requirement? (Choose two.)
A. FortiGate-A must generate a RADUIS accounting packets.
B. Use Kerberos authentication.
C. Use the Collector Agent.
D. Use FortiAuthenticator.
正解:A,D
質問 5:
An organization has one central site And three remote sites. A FotiSIEM has been drafted on the central site and now all devices across the remote sites need to be monitored by the FortiSlEM.
When action would reduce the WAN usage by the monitoring system?
A. Disable monitoring on the remote sites during the day.
B. Install local Collection remote site.
C. Deploy a single Supervisor on the central site and enable WAN optimize on the WAN gateways.
D. install a Supervisor and a Collector for each remote site.
正解:B
質問 6:
An old router has been replaced by a FortiWAN device. The FortiWAN has inherited the router's management IP address and now the network administrator needs to remove the old router from the FortiSIEM configuration.
Which two statements are true about this operation? (Choose two.)
A. The old router will be completely deleted from FortiSIEM's CMDB.
B. FortiSIM will move the old router device into the Decommission folder.
C. FotiSEIM needs a special syslog for FortiWAN.
D. FortiSIEM will discover a new device for the FortiWAN with the same IP.
正解:B,D
0 お客様のコメント