NSE4_FGT-7.2試験無料問題集（183題）「Fortinet NSE 4

出題：1

Which two statements describe how the RPF check is used? (Choose two.)

A. The RPF check is run on the first sent packet of any new session.

B. The RPF check is run on the first reply packet of any new session.

C. The RPF check is run on the first sent and reply packet of any new session.

D. The RPF check is a mechanism that protects FortiGate and the network from IP spoofing attacks.

正解：A,D 解答を投票する

解説: (GoShiken メンバーにのみ表示されます)

出題：2

Refer to the exhibit.
The exhibit shows the FortiGuard Category Based Filter section of a corporate web filter profile.
An administrator must block access to download.com, which belongs to the Freeware and Software Downloads category. The administrator must also allow other websites in the same category.

What are two solutions for satisfying the requirement? (Choose two.)

A. Configure a web override rating for download.com and select Malicious Websites as the subcategory.

B. Configure a static URL filter entry for download.com with Type and Action set to Wildcard and Block, respectively.

C. Set the Freeware and Software Downloads category Action to Warning.

D. Configure a separate firewall policy with action Deny and an FQDN address object for *.download.com as destination address.

正解：A,B 解答を投票する

解説: (GoShiken メンバーにのみ表示されます)

出題：3

Which three statements are true regarding session-based authentication? (Choose three.)

A. It requires more resources.

B. HTTP sessions are treated as a single user.

C. It is not recommended if multiple users are behind the source NAT

D. IP sessions from the same source IP address are treated as a single user.

E. It can differentiate among multiple clients behind the same source IP address.

正解：A,B,E 解答を投票する

出題：4

Which statement regarding the firewall policy authentication timeout is true?

A. It is a hard timeout. The FortiGate removes the temporary policy for a user's source MAC address after this timer has expired.

B. It is a hard timeout. The FortiGate removes the temporary policy for a user's source IP address after this timer has expired.

C. It is an idle timeout. The FortiGate considers a user to be "idle" if it does not see any packets coming from the user's source MAC.

D. It is an idle timeout. The FortiGate considers a user to be "idle" if it does not see any packets coming from the user's source IP.

正解：D 解答を投票する

出題：5

Which of the following are valid actions for FortiGuard category based filter in a web filter profile ui proxy-based inspection mode? (Choose two.)

A. Allow

B. Warning

C. Exempt

D. Learn

正解：A,B 解答を投票する

出題：6

Which three methods are used by the collector agent for AD polling? (Choose three.)

A. Novell API

B. WMI

C. FortiGate polling

D. WinSecLog

E. NetAPI

正解：B,D,E 解答を投票する

解説: (GoShiken メンバーにのみ表示されます)

出題：7

Refer to the exhibits.

The SSL VPN connection fails when a user attempts to connect to it. What should the user do to successfully connect to SSL VPN?

A. Change the SSL VPN portal to the tunnel.

B. Change the SSL VPN port on the client.

C. Change the idle-timeout.

D. Change the Server IP address.

正解：B 解答を投票する

出題：8

Refer to the exhibit.

The exhibit displays the output of the CLI command: diagnose sys ha dump-by vcluster.
Which two statements are true? (Choose two.)

A. FortiGate SN FGVM010000064692 is the primary because of higher HA uptime.

B. FortiGate devices are not in sync because one device is down.

C. FortiGate SN FGVM010000065036 HA uptime has been reset.

D. FortiGate SN FGVM010000064692 has the higher HA priority.

正解：C,D 解答を投票する

解説: (GoShiken メンバーにのみ表示されます)

出題：9

Refer to the exhibits to view the firewall policy (Exhibit A) and the antivirus profile (Exhibit B).

Which statement is correct if a user is unable to receive a block replacement message when downloading an infected file for the first time?

A. The firewall policy performs the full content inspection on the file.

B. The intrusion prevention security profile needs to be enabled when using flow-based inspection mode.

C. The volume of traffic being inspected is too high for this model of FortiGate.

D. The flow-based inspection is used, which resets the last packet to the user.

正解：D 解答を投票する

解説: (GoShiken メンバーにのみ表示されます)

出題：10

Why does FortiGate Keep TCP sessions in the session table for several seconds, even after both sides (client and server) have terminated the session?

A. To generate logs

B. To allow for out-of-order packets that could arrive after the FIN/ACK packets

C. To finish any inspection operations

D. To remove the NAT operation

正解：B 解答を投票する

解説: (GoShiken メンバーにのみ表示されます)

NSE4_FGT-7.2試験無料問題集「Fortinet NSE 4 - FortiOS 7.2 認定」