최신 NSE4_FGT-6.4 무료덤프 - Fortinet NSE 4

문제1

Which two statements are correct about SLA targets? (Choose two.)

A. SLA targets are optional.

B. SLA targets are required for SD-WAN rules with a Best Quality strategy.

C. You can configure only two SLA targets per one Performance SLA.

D. SLA targets are used only when referenced by an SD-WAN rule.

정답: A,D

문제2

Which of the following are purposes of NAT traversal in IPsec? (Choose two.)

A. To detect intermediary NAT devices in the tunnel path.

B. To dynamically change phase 1 negotiation mode aggressive mode.

C. To force a new DH exchange with each phase 2 rekey.

D. To encapsulation ESP packets in UDP packets using port 4500.

정답: A,D

문제3

By default, FortiGate is configured to use HTTPS when performing live web filtering with FortiGuard servers.
Which two CLI commands will cause FortiGate to use an unreliable protocol to communicate with FortiGuard servers for live web filtering? (Choose two.)

A. set protocol udp

B. set webfilter-force-off disable

C. set fortiguard anycast disable

D. set webfilter-cache disable

정답: A,C

문제4

Which engine handles application control traffic on the next-generation firewall (NGFW) FortiGate?

A. Detection engine

B. Antivirus engine

C. Flow engine

D. Intrusion prevention system engine

정답: D

문제5

Refer to the FortiGuard connection debug output.

Based on the output shown in the exhibit, which two statements are correct? (Choose two.)

A. A local FortiManager is one of the servers FortiGate communicates with.

B. FortiGate is using default FortiGuard communication settings.

C. There is at least one server that lost packets consecutively.

D. One server was contacted to retrieve the contract information.

정답: B,D

문제6

Which two configuration settings are synchronized when FortiGate devices are in an active-active HA cluster? (Choose two.)

A. FortiGuard web filter cache

B. DNS

C. FortiGate hostname

D. NTP

정답: B,D

문제7

What devices form the core of the security fabric?

A. Two FortiGate devices and one FortiAnalyzer device

B. One FortiGate device and one FortiAnalyzer device

C. Two FortiGate devices and one FortiManager device

D. One FortiGate device and one FortiManager device

정답: A

문제8

Which three security features require the intrusion prevention system (IPS) engine to function? (Choose three.)

정답: B,C,D

문제9

Refer to the exhibit.

Which contains a session diagnostic output. Which statement is true about the session diagnostic output?

A. The session is in FIN_ACK state.

B. The session is in ESTABLISHED state.

C. The session is in SYN_SENT state.

D. The session is in FTN_WAIT state.

정답: C

설명: (DumpTOP 회원만 볼 수 있음)

문제10

Refer to the exhibit.

Given the routing database shown in the exhibit, which two statements are correct? (Choose two.)

A. The port3 default route has the highest distance.

B. The port3 default route has the lowest metric.

C. There will be eight routes active in the routing table.

D. The port1 and port2 default routes are active in the routing table.

정답: A,D

최신 NSE4_FGT-6.4 무료덤프 - Fortinet NSE 4 - FortiOS 6.4

우리와 연락하기

유용한 링크

최신 업데이트