Nest 0 Cart
Nest Account
Popular Exams
All Categories...
Nest
Nest 0
Contact
Log In / Sign Up
Copyright 2024 © store. All rights reserved.
Home Fortinet FCSS_NST_SE-7.4

Fortinet FCSS_NST_SE-7.4 Exam Practice Questions (P. 2)

  • Full Access (66 questions)
  • Six months of Premium Access
  • Access to one million comments
  • Seamless ChatGPT Integration
  • Ability to download PDF files
  • Anki Flashcard files for revision
  • No Captcha & No AdSense
  • Advanced Exam Configuration
Get Contributor Access
Question #6
Refer to the exhibit, which shows one way communication of the downstream FortiGate with the upstream FortiGate within a Security Fabric.

What three actions must you take to ensure successful communication? (Choose three.)
  1. A
    You must authorize the downstream FortiGate on the root FortiGate.
  2. B
    FortiGate must not be in NAT mode.
  3. C
    Ensure TCP port 8013 is not blocked along the way.
  4. D
    You must enable Security Fabric/Fortitelemetry on the receiving interface of the upstream FortiGate.
  5. E
    Ensure the port for Neighbor Discovery has been changed.

Correct Answer: ACD ?️

Question #7
Refer to the exhibit, which shows the partial output of FortiOS kernel slabs.

Which statement is true?
  1. A
    The total slab size of the sctp_session slab is 0 kB and is associated with the user space.
  2. B
    The total slab size of the ip_session slab is 3600 kB and is associated with the user space.
  3. C
    The total slab size of the ip6_session slab is 1300 kB and is associated with the kernel.
  4. D
    The total slab size of the tcp_session slab is 7500 kB and is associated with the kernel.

Correct Answer: D ?️

Question #8
Refer to the exhibit, which a network topology and a partial routing table.

FortiGate has already been configured with a firewall policy that allows all ICMP traffic to flow from port1 to port3.
Which changes must the administrator perform to ensure the server at 10.4.0.1/24 receives the echo reply from the laptop at 10.1.0.1/24?
  1. A
    Enable asymmetric routing under config system settings.
  2. B
    Change the configuration from strict RPF check mode to feasible RPF check mode.
  3. C
    A firewall policy that allows all ICMP traffic from port3 to port1.
  4. D
    Modify the default gateway on the laptop from 10.1.0.2 to 10.2.0.2.

Correct Answer: C ?️

Question #9
What are two functions of automation stitches? (Choose two.)
  1. A
    You can configure automation stitches on any FortiGate device in a Security Fabric environment.
  2. B
    You can configure automation stitches to execute actions sequentially by taking parameters from previous actions as input for the current action.
  3. C
    You can set an automation stitch configured to execute actions in parallel to insert a specific delay between actions.
  4. D
    You can create automation stitches to run diagnostic commands and attach the results to an email message when CPU or memory usage exceeds specified thresholds.

Correct Answer: BC ?️

Question #10
Refer to the exhibit, which contains the partial configuration of an IPsec VPN configuration.

After reviewing the configuration, what can you conclude about the IPsec VPN Phase 1 setup?
  1. A
    The VPN is configured using IKEv2.
  2. B
    Dead Peer Detection is disabled.
  3. C
    The VPN is configured with DHCP over IPsec.
  4. D
    The tunnel is configured as a route-based VPN.

Correct Answer: D ?️

Previous Questions Next Questions

All Pages