The exhibit contains a network diagram, central SNAT policy, and IP pool configuration. The WAN (port1) interface has the IP address 10.200.1.1/24. The LAN (port3) interface has the IP address 10.0.1.254/24. A firewall policy is configured to allow to destinations from LAN (port3) to WAN (port1). Central NAT is enabled, so NAT settings from matching Central SNAT policies will be applied. Which IP address will be used to source NAT the traffic, if the user on Local-Client (10.0.1.10) pings the IP address of

- (Exam Topic 2) Which three security features require the intrusion prevention system (IPS) engine to function? (Choose three.)

- (Exam Topic 2) Refer to the FortiGuard connection debug output. Based on the output shown in the exhibit, which two statements are correct? (Choose two.)

- (Exam Topic 1) An administrator has configured a strict RPF check on FortiGate. Which statement is true about the strict RPF check?

- (Exam Topic 2) Based on the administrator profile settings, what permissions must the administrator set to run the diagnose firewall auth list CLI command on FortiGate?

- (Exam Topic 2) Which of the following conditions must be met in order for a web browser to trust a web server certificate signed by a third-party CA?

What is the primary FortiGate election process when the HA override setting is disabled?

Why did FortiGate drop the packet?

- (Exam Topic 1) An administrator wants to configure timeouts for users. Regardless of the user€?s behavior, the timer should start as soon as the user authenticates and expire after the configured value. Which timeout option should be configured on FortiGate?

- (Exam Topic 2) To complete the final step of a Security Fabric configuration, an administrator must authorize all the devices on which device?