خذ اختبارات أخرى عبر الإنترنت

السؤال #1

- (Exam Topic 2) View the exhibit: Which the FortiGate handle web proxy traffic rue? (Choose two.)

A. Broadcast traffic received in port1-VLAN10 will not be forwarded to port2-VLAN10

B. port-VLAN1 is the native VLAN for the port1 physical interface

C. port1-VLAN10 and port2-VLAN10 can be assigned to different VDOMs

D. Traffic between port1-VLAN1 and port2-VLAN1 is allowed by default

عرض الإجابة

اجابة صحيحة: A

السؤال #2

- (Exam Topic 2) Which two statements are true about the RPF check? (Choose two.)

A. The RPF check is run on the first sent packet of any new session

B. The RPF check is run on the first reply packet of any new session

C. The RPF check is run on the first sent and reply packet of any new session

D. RPF is a mechanism that protects FortiGate and your network from IP spoofing attacks

عرض الإجابة

اجابة صحيحة: AD

السؤال #3

- (Exam Topic 2) Examine the IPS sensor and DoS policy configuration shown in the exhibit, then answer the question below. When detecting attacks, which anomaly, signature, or filter will FortiGate evaluate first?

A. SMTP

B. IMAP

C. ip_src_session

D. Location: server Protocol: SMTP

عرض الإجابة

اجابة صحيحة: AD

السؤال #4

- (Exam Topic 2) What is the primary FortiGate election process when the HA override setting is disabled?

A. Connected monitored ports > System uptime > Priority > FortiGate Serial number

B. Connected monitored ports > HA uptime > Priority > FortiGate Serial number

C. Connected monitored ports > Priority > HA uptime > FortiGate Serial number

D. Connected monitored ports > Priority > System uptime > FortiGate Serial number

عرض الإجابة

اجابة صحيحة: AD

السؤال #5

- (Exam Topic 2) An administrator needs to increase network bandwidth and provide redundancy. What interface type must the administrator select to bind multiple FortiGate interfaces?

A. VLAN interface

B. Software Switch interface

C. Aggregate interface

D. Redundant interface

عرض الإجابة

اجابة صحيحة: D

السؤال #6

- (Exam Topic 1) Which two statements about FortiGate FSSO agentless polling mode are true? (Choose two.)

A. FortiGate uses the AD server as the collector agent

B. FortiGate uses the SMB protocol to read the event viewer logs from the DCs

C. FortiGate does not support workstation check

D. FortiGate directs the collector agent to use a remote LDAP server

عرض الإجابة

اجابة صحيحة: CD

السؤال #7

- (Exam Topic 1) Refer to the exhibits to view the firewall policy (Exhibit A) and the antivirus profile (Exhibit B). Which statement is correct if a user is unable to receive a block replacement message when downloading an infected file for the first time?

A. The firewall policy performs the full content inspection on the file

B. The flow-based inspection is used, which resets the last packet to the user

C. The volume of traffic being inspected is too high for this model of FortiGate

D. The intrusion prevention security profile needs to be enabled when using flow-based inspection mode

عرض الإجابة

اجابة صحيحة: B

السؤال #8

- (Exam Topic 2) Which three methods are used by the collector agent for AD polling? (Choose three.)

A. FortiGate polling

B. NetAPI

C. Novell API

D. WMI

E. WinSecLog

عرض الإجابة

اجابة صحيحة: C

السؤال #9

- (Exam Topic 2) An administrator is configuring an Ipsec between site A and siteB. The Remotes Gateway setting in both sites has been configured as Static IP Address. For site A, the local quick mode selector is 192.16.1.0/24 and the remote quick mode selector is 192.16.2.0/24. How must the administrator configure the local quick mode selector for site B?

A. 192

B. 192

C. 192

D. 192

عرض الإجابة

اجابة صحيحة: B

السؤال #10

- (Exam Topic 2) An administrator needs to configure VPN user access for multiple sites using the same soft FortiToken. Each site has a FortiGate VPN gateway. What must an administrator do to achieve this objective?

A. The administrator can register the same FortiToken on more than one FortiGate

B. The administrator must use a FortiAuthenticator device

C. The administrator can use a third-party radius OTP server

D. The administrator must use the user self-registration server

عرض الإجابة

اجابة صحيحة: AC

السؤال #11

- (Exam Topic 2) Which contains a network diagram and routing table output. The Student is unable to access Webserver. What is the cause of the problem and what is the solution for the problem?

A. The first packet sent from Student failed the RPF check

B. The first reply packet for Student failed the RPF check

C. The first reply packet for Student failed the RPF check

D. The first packet sent from Student failed the RPF check

عرض الإجابة

اجابة صحيحة: A

السؤال #12

- (Exam Topic 2) Which two policies must be configured to allow traffic on a policy-based next-generation firewall (NGFW) FortiGate? (Choose two.)

A. Firewall policy

B. Policy rule

C. Security policy

D. SSL inspection and authentication policy

عرض الإجابة

اجابة صحيحة: C

السؤال #13

- (Exam Topic 2) An organization’s employee needs to connect to the office through a high-latency internet connection. Which SSL VPN setting should the administrator adjust to prevent the SSL VPN negotiation failure?

A. Change the session-ttl

B. Change the login timeout

C. Change the idle-timeout

D. Change the udp idle timer

عرض الإجابة

اجابة صحيحة: B

السؤال #14

- (Exam Topic 1) Which two statements about antivirus scanning mode are true? (Choose two.)

A. In proxy-based inspection mode, files bigger than the buffer size are scanned

B. In flow-based inspection mode, FortiGate buffers the file, but also simultaneously transmits it to the client

C. In proxy-based inspection mode, antivirus scanning buffers the whole file for scanning, before sending it to the client

D. In flow-based inspection mode, files bigger than the buffer size are scanned

عرض الإجابة

اجابة صحيحة: CD

السؤال #15

- (Exam Topic 1) The exhibit displays the output of the CLI command: diagnose sys ha dump-by vcluster. Which two statements are true? (Choose two.)

A. FortiGate SN FGVM010000065036 HA uptime has been reset

B. FortiGate devices are not in sync because one device is down

C. FortiGate SN FGVM010000064692 is the primary because of higher HA uptime

D. FortiGate SN FGVM010000064692 has the higher HA priority

عرض الإجابة

اجابة صحيحة: AD

عرض الإجابات بعد التقديم

يرجى إرسال البريد الإلكتروني الخاص بك والواتس اب للحصول على إجابات الأسئلة.

ملحوظة: يرجى التأكد من صلاحية معرف البريد الإلكتروني وWhatsApp حتى تتمكن من الحصول على نتائج الاختبار الصحيحة.

بريد إلكتروني:

رقم الواتس اب/الهاتف:

لا تريد أن تفوت شيئا؟

اجتياز اختبار الممارسة Cisco وPMP وCISA وCISM وAWS بنسبة 100% للبيع!
احصل الان

عرض الإجابات بعد التقديم

لا تريد أن تفوت شيئا؟

اجتياز اختبار الممارسة Cisco وPMP وCISA وCISM وAWS بنسبة 100% للبيع! احصل الان

عرض الإجابات بعد التقديم

اجتياز اختبار الممارسة Cisco وPMP وCISA وCISM وAWS بنسبة 100% للبيع!
احصل الان