NSE4_FGT-7.0試験無料問題集（175題）「Fortinet NSE 4

出題：1

Which three CLI commands can you use to troubleshoot Layer 3 issues if the issue is in neither the physical layer nor the link layer? (Choose three.)

A. diagnose sys top

B. diagnose sniffer packet any

C. execute ping

D. get system arp

E. execute traceroute

正解：B,C,E 解答を投票する

出題：2

Refer to the exhibits.
Exhibit A.

Exhibit B.

An administrator creates a new address object on the root FortiGate (Local-FortiGate) in the security fabric. After synchronization, this object is not available on the downstream FortiGate (ISFW).
What must the administrator do to synchronize the address object?

A. Change the csf setting on Local-FortiGate (root) to sec fabric-objecc-unificacion defaulc.

B. Change the csf setting on ISFW (downstream) to sec configuracion-sync local.

C. Change the csf setting on ISFW (downstream) to sec fabric-objecc-unificacion defaulc.

D. Change the csf setting on Local-FortiGate (root) to sec configuration-sync local.

正解：D 解答を投票する

出題：3

Which two settings can be separately configured per VDOM on a FortiGate device? (Choose two.)

A. System time

B. FortiGuaid update servers

C. NGFW mode

D. Operating mode

正解：C,D 解答を投票する

解説: (GoShiken メンバーにのみ表示されます)

出題：4

Refer to the exhibit.

According to the certificate values shown in the exhibit, which type of entity was the certificate issued to?

A. A root CA

B. A user

C. A subordinate

D. A bridge CA

正解：B 解答を投票する

出題：5

Which three options are the remote log storage options you can configure on FortiGate? (Choose three.)

A. FortiCache

B. FortiAnalyzer

C. FortiSIEM

D. FortiSandbox

E. FortiCloud

正解：B,C,E 解答を投票する

出題：6

Refer to the exhibit.

The exhibit shows proxy policies and proxy addresses, the authentication rule and authentication scheme, users, and firewall address.
An explicit web proxy is configured for subnet range 10.0.1.0/24 with three explicit web proxy policies.
The authentication rule is configured to authenticate HTTP requests for subnet range 10.0.1.0/24 with a form-based authentication scheme for the FortiGate local user database. Users will be prompted for authentication.
How will FortiGate process the traffic when the HTTP request comes from a machine with the source IP 10.0.1.10 to the destination http://www.fortinet.com? (Choose two.)

A. If a Microsoft Internet Explorer browser is used with User-B credentials, the HTTP request will be allowed.

B. If a Mozilla Firefox browser is used with User-B credentials, the HTTP request will be allowed.

C. If a Google Chrome browser is used with User-B credentials, the HTTP request will be allowed.

D. If a Mozilla Firefox browser is used with User-A credentials, the HTTP request will be allowed.

正解：A,C 解答を投票する

出題：7

View the exhibit.

A user behind the FortiGate is trying to go to http://www.addictinggames.com (Addicting Games). Based on this configuration, which statement is true?

A. Addcting.Games is allowed based on the Categories configuration.

B. Addicting.Games is allowed based on the Application Overrides configuration.

C. Addicting.Games is blocked on the Filter Overrides configuration.

D. Addicting.Games can be allowed only if the Filter Overrides actions is set to Exempt.

正解：B 解答を投票する

出題：8

Which of the following statements is true regarding SSL VPN settings for an SSL VPN portal?

A. By default, the SSL VPN portal requires the installation of a client's certificate.

B. By default, split tunneling is enabled.

C. By default, the admin GUI and SSL VPN portal use the same HTTPS port.

D. By default, FortiGate uses WINS servers to resolve names.

正解：C 解答を投票する

出題：9

Which two configuration settings are synchronized when FortiGate devices are in an active-active HA cluster? (Choose two.)

A. NTP

B. FortiGuard web filter cache

C. DNS

D. FortiGate hostname

正解：A,C 解答を投票する

解説: (GoShiken メンバーにのみ表示されます)

出題：10

Which two statements ate true about the Security Fabric rating? (Choose two.)

A. Many of the security issues can be fixed immediately by clicking Apply where available.

B. The Security Fabric rating must be run on the root FortiGate device in the Security Fabric.

C. It provides executive summaries of the four largest areas of security focus.

D. The Security Fabric rating is a free service that comes bundled with alt FortiGate devices.

正解：A,B 解答を投票する

NSE4_FGT-7.0試験無料問題集「Fortinet NSE 4 - FortiOS 7.0 認定」