NSE4_FGT-7.2試験無料問題集（183題）「Fortinet NSE 4

出題：1

Which two statements are true when FortiGate is in transparent mode? (Choose two.)

A. Static routes are required to allow traffic to the next hop.

B. By default, all interfaces are part of the same broadcast domain.

C. FortiGate forwards frames without changing the MAC address.

D. The existing network IP schema must be changed when installing a transparent mode.

正解：B,C 解答を投票する

解説: (GoShiken メンバーにのみ表示されます)

出題：2

On FortiGate, which type of logs record information about traffic directly to and from the FortiGate management IP addresses?

A. Local traffic logs

B. Security logs

C. System event logs

D. Forward traffic logs

正解：A 解答を投票する

解説: (GoShiken メンバーにのみ表示されます)

出題：3

Which three criteria can a FortiGate use to look for a matching firewall policy to process traffic? (Choose three.)

A. Services defined in the firewall policy.

B. Lowest to highest policy ID number.

C. Destination defined as Internet Services in the firewall policy.

D. Highest to lowest priority defined in the firewall policy.

E. Source defined as Internet Services in the firewall policy.

正解：A,C,E 解答を投票する

解説: (GoShiken メンバーにのみ表示されます)

出題：4

Refer to the exhibit.

Review the Intrusion Prevention System (IPS) profile signature settings. Which statement is correct in adding the FTP.Login.Failed signature to the IPS sensor profile?

A. Traffic matching the signature will be silently dropped and logged.

B. The signature setting includes a group of other signatures.

C. Traffic matching the signature will be allowed and logged.

D. The signature setting uses a custom rating threshold.

正解：A 解答を投票する

解説: (GoShiken メンバーにのみ表示されます)

出題：5

Refer to the exhibit.

Which contains a session diagnostic output. Which statement is true about the session diagnostic output?

A. The session is in SYN_SENT state.

B. The session is in FTN_WAIT state.

C. The session is in FIN_ACK state.

D. The session is in ESTABLISHED state.

正解：A 解答を投票する

解説: (GoShiken メンバーにのみ表示されます)

出題：6

Which scanning technique on FortiGate can be enabled only on the CLI?

A. Trojan scan

B. Antivirus scan

C. Ransomware scan

D. Heuristics scan

正解：D 解答を投票する

出題：7

Which of the following SD-WAN load balancing method use interface weight value to distribute traffic? (Choose two.)

A. Session

B. Spillover

C. Source IP

D. Volume

正解：A,D 解答を投票する

解説: (GoShiken メンバーにのみ表示されます)

出題：8

What are two benefits of flow-based inspection compared to proxy-based inspection? (Choose two.)

A. FortiGate performs a more exhaustive inspection on traffic.

B. FortiGate allocates two sessions per connection.

C. FortiGate uses fewer resources.

D. FortiGate adds less latency to traffic.

正解：C,D 解答を投票する

解説: (GoShiken メンバーにのみ表示されます)

出題：9

An administrator needs to configure VPN user access for multiple sites using the same soft FortiToken. Each site has a FortiGate VPN gateway. What must an administrator do to achieve this objective?

A. The administrator can use a third-party radius OTP server.

B. The administrator must use the user self-registration server.

C. The administrator must use a FortiAuthenticator device

D. The administrator can register the same FortiToken on more than one FortiGate.

正解：C 解答を投票する

解説: (GoShiken メンバーにのみ表示されます)

出題：10

Which three methods are used by the collector agent for AD polling? (Choose three.)

A. Novell API

B. WMI

C. FortiGate polling

D. WinSecLog

E. NetAPI

正解：B,D,E 解答を投票する

解説: (GoShiken メンバーにのみ表示されます)

NSE4_FGT-7.2試験無料問題集「Fortinet NSE 4 - FortiOS 7.2 認定」