NSE4_FGT-7.0試験無料問題集（175題）「Fortinet NSE 4

出題：1

Which CLI command allows administrators to troubleshoot Layer 2 issues, such as an IP address conflict?

A. diagnose sys top

B. get system performance status

C. get system arp

D. get system status

正解：C 解答を投票する

解説: (GoShiken メンバーにのみ表示されます)

出題：2

If the Services field is configured in a Virtual IP (VIP), which statement is true when central NAT is used?

A. The Services field is used when you need to bundle several VIPs into VIP groups.

B. The Services field removes the requirement to create multiple VIPs for different services.

C. The Services field prevents multiple sources of traffic from using multiple services to connect to a single

D. The Services field prevents SNAT and DNAT from being combined in the same policy.

正解：B 解答を投票する

解説: (GoShiken メンバーにのみ表示されます)

出題：3

If Internet Service is already selected as Destination in a firewall policy, which other configuration objects can be selected to the Destination field of a firewall policy?

A. IP address

B. FQDN address

C. User or User Group

D. No other object can be added

正解：D 解答を投票する

解説: (GoShiken メンバーにのみ表示されます)

出題：4

Refer to the exhibits to view the firewall policy (Exhibit A) and the antivirus profile (Exhibit B).

Which statement is correct if a user is unable to receive a block replacement message when downloading an infected file for the first time?

A. The firewall policy performs the full content inspection on the file.

B. The intrusion prevention security profile needs to be enabled when using flow-based inspection mode.

C. The volume of traffic being inspected is too high for this model of FortiGate.

D. The flow-based inspection is used, which resets the last packet to the user.

正解：D 解答を投票する

解説: (GoShiken メンバーにのみ表示されます)

出題：5

Which of the following are valid actions for FortiGuard category based filter in a web filter profile ui proxy-based inspection mode? (Choose two.)

A. Allow

B. Warning

C. Exempt

D. Learn

正解：A,B 解答を投票する

出題：6

Which statement about the policy ID number of a firewall policy is true?

A. It defines the order in which rules are processed.

B. It is required to modify a firewall policy using the CLI.

C. It represents the number of objects used in the firewall policy.

D. It changes when firewall policies are reordered.

正解：B 解答を投票する

出題：7

Refer to the exhibit.

Given the routing database shown in the exhibit, which two statements are correct? (Choose two.)

A. The port3 default route has the highest distance.

B. The port3 default route has the lowest metric.

C. There will be eight routes active in the routing table.

D. The port1 and port2 default routes are active in the routing table.

正解：A,D 解答を投票する

出題：8

Which two VDOMs are the default VDOMs created when FortiGate is set up in split VDOM mode? (Choose two.)

A. Root

B. FG-Mgmt

C. Mgmt

D. FG-traffic

正解：A,D 解答を投票する

出題：9

Which two protocols are used to enable administrator access of a FortiGate device? (Choose two.)

A. FTM

B. HTTPS

C. SSH

D. FortiTelemetry

正解：B,C 解答を投票する

出題：10

View the exhibit.

A user behind the FortiGate is trying to go to http://www.addictinggames.com (Addicting Games). Based on this configuration, which statement is true?

A. Addcting.Games is allowed based on the Categories configuration.

B. Addicting.Games is allowed based on the Application Overrides configuration.

C. Addicting.Games is blocked on the Filter Overrides configuration.

D. Addicting.Games can be allowed only if the Filter Overrides actions is set to Exempt.

正解：B 解答を投票する

NSE4_FGT-7.0試験無料問題集「Fortinet NSE 4 - FortiOS 7.0 認定」