NSE7_EFW-7.0試験無料問題集（165題）「Fortinet NSE 7

出題：1

How are bulk configuration changes made using FortiManager CLI scripts? (Choose two.)

A. When run on the Policy Package, ADOM database, you must use the installation wizard to apply the changes to the managed FortiGate device

B. When run on the All FortiGate in ADOM, changes are automatically installed without the creation of a new revision history.

C. When run on the Remote FortiGate directly, administrators do not have the option to review the changes prior to installation.

D. When run on the Device Database, changes are applied directly to the managed FortiGate device.

正解：A,C 解答を投票する

解説: (GoShiken メンバーにのみ表示されます)

出題：2

View the exhibit, which contains the output of a debug command, and then answer the question below.

Which of the following statements about the exhibit are true? (Choose two.)

A. The local FortiGate has been elected as the OSPF backup designated router.

B. In the network on port4, two OSPF routers are down.

C. Port4 is connected to the OSPF backbone area.

D. The local FortiGate's OSPF router ID is 0.0.0.4

正解：C,D 解答を投票する

出題：3

Refer to exhibit, which contains the output of a BGP debug command.

Which statement explains why the state of the 10.200.3.1 peer is Connect?

A. The local router is receiving BGP keepalives from the remote peer, but the local peer has not received the OpenConfirm yet.

B. The local router is receiving the BGP keepalives from the peer, but it has not received a BGP prefix yet.

C. The TCP session to 10.200.3.1 has not completed the three-way handshake.

D. The local router has received the BGP prefixes from the remote peer.

正解：C 解答を投票する

解説: (GoShiken メンバーにのみ表示されます)

出題：4

View the exhibit, which contains the output of a web diagnose command, and then answer the question below.

Which one of the following statements explains why the cache statistics are all zeros?

A. FortiGate is using a flow-based web filter and the cache applies only to proxy-based inspection.

B. There are no users making web requests.

C. The administrator has reallocated the cache memory to a separate process.

D. The FortiGuard web filter cache is disabled in the FortiGate's configuration.

正解：D 解答を投票する

出題：5

Two independent FortiGate HA clusters are connected to the same broadcast domain. The administrator has reported that both clusters are using the same HA virtual MAC address. This creates a duplicated MAC address problem in the network. What HA setting must be changed in one of the HA clusters to fix the problem?

A. Group name.

B. Session pickup.

C. Gratuitous ARPs.

D. Group ID.

正解：D 解答を投票する

解説: (GoShiken メンバーにのみ表示されます)

出題：6

Exhibits:

Refer to the exhibits, which contain the network topology and BGP configuration for a hub.
An administrator is trying to configure ADVPN with a hub-spoke VPN setup using iBGP. All the VPNs are up and connected to the hub. The hub is receiving route information from both spokes over iBGP; however, the spokes are not receiving route information from each other.
What change must the administrator make to the hub BGP configuration so that the routes learned by one spoke are forwarded to the other spokes?

A. Change the router id to 10.1.0.254.

B. Configure an individual neighbor and remove neighbor-range configuration.

C. Configure the hub as a route reflector client.

D. Make the configuration of remote-as different from the configuration of local-as.

正解：C 解答を投票する

解説: (GoShiken メンバーにのみ表示されます)

出題：7

Examine the following routing table and BGP configuration; then answer the question below.

TheBGP connection is up, but the local peer is NOT advertising the prefix 192.168.1.0/24. Which configuration change will make the local peer advertise this prefix?

A. Enable the redistribution of static routers into BGP.

B. Enable the setting ebgp-multipath.

C. Disable the setting network-import-check.

D. Enable the redistribution of connected routers into BGP.

正解：C 解答を投票する

出題：8

Examine the output of the 'get router info ospf neighbor' command shown in the exhibit; then answer the question below.

Which statements are true regarding the output in the exhibit? (Choose two.) Refer to the exhibit, which shows the output of a debug command.
Which statement about the output is true?

A. The OSPF router with the ID 0.0.0.2 is the designated router for the ToRemote network.

B. The local FortiGate is the designated router for the wan1 network.

C. TheOSPF routers with the IDs 0.0.0.69 and 0.0.0.117 are both designated routers for the war. l network.

D. The interface ToRemote is a point-to-point OSPF network.

正解：D 解答を投票する

解説: (GoShiken メンバーにのみ表示されます)

出題：9

Refer to the exhibit, which shows a session table entry.

Which statement about FortiGate behavior relating to this session is true?

A. FortiGate applied only IPS inspection to this session.

B. FortiGate is performing security profile inspection using the CPU. Most Voted

C. FortiGate forwarded this session without any inspection.

D. FortiGate redirected the client to the captive portal to authenticate, so that a correct policy match could be made.

正解：B 解答を投票する

解説: (GoShiken メンバーにのみ表示されます)

出題：10

Which two statements about conserve mode are true? (Choose two.)

A. FortiGate starts taking the configured action for new sessions requiring content inspection when the system memory reaches the configured red threshold.

B. FortiGate starts dropping all new sessions when the system memory reaches the configured red threshold.

C. FortiGate enters conserve mode when the system memory reaches the configured extreme threshold.

D. FortiGate exits conserve mode when the system memory goes below the configured green threshold.

正解：A,D 解答を投票する

NSE7_EFW-7.0試験無料問題集「Fortinet NSE 7 - Enterprise Firewall 7.0 認定」