1 / 11

Fortinet NSE 7 - Enterprise Firewall 6.4 NSE7_EFW-6.4 Exam Questions

PassQuestion offers the latest Fortinet NSE 7 - Enterprise Firewall 6.4 NSE7_EFW-6.4 Exam Questions that will allow you to improve the preparation level before attempting real exam.

examquestionsonline
Download Presentation

Fortinet NSE 7 - Enterprise Firewall 6.4 NSE7_EFW-6.4 Exam Questions

An Image/Link below is provided (as is) to download presentation Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author. Content is provided to you AS IS for your information and personal use only. Download presentation by click this link. While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server. During download, if you can't get a presentation, the file might be deleted by the publisher.

E N D

Presentation Transcript

  1. NSE7_EFW-6.4 Training Questions Fortinet NSE 7 - Enterprise Firewall 6.4 Fortinet NSE 7 - Enterprise Firewall 6.4 https://www.passquestion.com/NSE7_EFW-6.4.html

  2. Practice PassQuestion NSE7_EFW-6.4 Training Questions ensure your 100% success Question 1 Which of the following statements are true regarding the SIP session helper and the SIP application layer gateway (ALG)? (Choose three.) A. SIP session helper runs in the kernel; SIP ALG runs as a user space process. B. SIP ALG supports SIP HA failover; SIP helper does not. C. SIP ALG supports SIP over IPv6; SIP helper does not. D. SIP ALG can create expected sessions for media traffic; SIP helper does not. E. SIP helper supports SIP over TCP and UDP; SIP ALG supports only SIP over UDP. Answer: B,C,D

  3. Practice PassQuestion NSE7_EFW-6.4 Training Questions ensure your 100% success Question 2 A corporate network allows Internet Access to FSSO users only. The FSSO user student does not have Internet access after successfully logged into the Windows AD network. The output of the ‘diagnose debug authd fsso list’ command does not show student as an active FSSO user. Other FSSO users can access the Internet without problems. What should the administrator check? (Choose two.) A. The user student must not be listed in the CA’s ignore user list. B. The user student must belong to one or more of the monitored user groups. C. The student workstation’s IP subnet must be listed in the CA’s trusted list. D. At least one of the student’s user groups must be allowed by a FortiGate firewall policy. Answer: A,D

  4. Practice PassQuestion NSE7_EFW-6.4 Training Questions ensure your 100% success Question 3 An administrator has decreased all the TCP session timers to optimize the FortiGate memory usage. However, after the changes, one network application started to have problems. During the troubleshooting, the administrator noticed that the FortiGate deletes the sessions after the clients send the SYN packets, and before the arrival of the SYN/ACKs. When the SYN/ACK packets arrive to the FortiGate, the unit has already deleted the respective sessions. Which TCP session timer must be increased to fix this problem? A. TCP half open. B. TCP half close. C. TCP time wait. D. TCP session time to live. Answer: A

  5. Practice PassQuestion NSE7_EFW-6.4 Training Questions ensure your 100% success Question 4 What is the diagnose test application ipsmonitor 99 command used for? A. To enable IPS bypass mode B. To restart all IPS engines and monitors C. To disable the IPS engine D. To provide information regarding IPS sessions Answer: B

  6. Practice PassQuestion NSE7_EFW-6.4 Training Questions ensure your 100% success Question 5 Which real time debug should an administrator enable to troubleshoot RADIUS authentication problems? A. Diagnose authd console -log enable. B. Diagnose radius console -log enable. C. Diagnose debug application fnbamd -1. D. Diagnose debug application radius -1. Answer: C

  7. Practice PassQuestion NSE7_EFW-6.4 Training Questions ensure your 100% success Question 6 What does the dirty flag mean in aFortiGate session? A. The next packet must be re-evaluated against the firewall policies. B. The session must be removed from the former primary unit after an HA failover. C. Traffic has been blocked by the antivirus inspection. D. Traffic has been identified as from an application that is not allowed. Answer: A

  8. Practice PassQuestion NSE7_EFW-6.4 Training Questions ensure your 100% success Question 7 Which statement about memory conserve mode is true? A.A FortiGate exits conserve mode when the configured memory use threshold reaches yellow. B.A FortiGate starts dropping all the new and old sessions when the configured memory use threshold reaches extreme. C.A FortiGate starts dropping new sessions when the configured memory use threshold reaches red D.A FortiGate enters conserve mode when the configured memory use threshold reaches red Answer : C

  9. Practice PassQuestion NSE7_EFW-6.4 Training Questions ensure your 100% success Question 8 Which two conditions must be met for a statistic route to be active in the routing table? (Choose two.) A.The link health monitor (if configured) is up. B.There is no other route, to the same destination, with a higher distance. C.The outgoing interface is up. D.The next-hop IP address is up. Answer: A, C

  10. Practice PassQuestion NSE7_EFW-6.4 Training Questions ensure your 100% success Question 9 When using the SSL certificate inspection method to inspect HTTPS traffic, how does FortiGate filter web requests when the client browser does not provide the server name indication (SNI) extension? A.FortiGate uses the requested URL from the user's web browser. B.FortiGate uses the CN information from the Subject field in the server certificate. C.FortiGate blocks the request without any further inspection. D.FortiGate switches to the full SSL inspection method to decrypt the data. Answer: B

  11. Practice PassQuestion NSE7_EFW-6.4 Training Questions ensure your 100% success Question 10 Which two conditions must be met for a statistic route to be active in the routing table? (Choose two.) A.The link health monitor (if configured) is up. B.There is no other route, to the same destination, with a higher distance. C.The outgoing interface is up. D.The next-hop IP address is up. Answer: A, C

More Related