An administrator has configured a route-based IPsec VPN between two FortiGate devices. Which statement about this IPsec VPN configuration is true?

To complete the final step of a Security Fabric configuration, an administrator must authorize all the devices on which device?

When using SD-WAN, how do you configure the next-hop gateway address for a member interface so that FortiGate can forward Internet traffic?

Which statement about FortiGuard services for FortiGate is true?

Which of the following statements describe WMI polling mode for the FSSO collector agent? (Choose two.)

Refer to the exhibits. The exhibits contain a network diagram and virtual IP and firewall policy configuration. The WAN (port1) interface has the IP address 10.200.1.1/24. The LAN (port2) interface has the IP address 10.0.1.254/24. The first firewall policy has NAT enabled on the outgoing interface address. The second firewall policy is configured with a VIP as the destination address. Which IP address will be used to source NAT the Internet traffic coming from a workstation with the IP address 10.0.1.10/32

Why must you use aggressive mode when a local FortiGate IPSec gateway hosts multiple dialup tunnels?

View the exhibit: The client cannot connect to the HTTP web server. The administrator ran the FortiGate built-in sniffer and got the following output: What should be done next to troubleshoot the problem?

How does FortiGate select the central SNAT policy that is applied to a TCP session?

Which two SD-WAN load balancing methods use interface weight value to distribute traffic?

Which configuration objects can be selected for the Source field of a firewall policy? (Choose two.)

NGFW mode allows policy-based configuration for most inspection rules. Which security profile’s configuration does not change when you enable policy-based inspection?