Nest 0 Cart
Nest Account
Popular Exams
All Categories...
Nest
Nest 0
Contact
Log In / Sign Up
Copyright 2024 © store. All rights reserved.
Home Fortinet FCSS_SDW_AR-7.4

Fortinet FCSS_SDW_AR-7.4 Exam Practice Questions (P. 2)

  • Full Access (68 questions)
  • One Year of Premium Access
  • Access to one million comments
  • Seamless ChatGPT Integration
  • Ability to download PDF files
  • Anki Flashcard files for revision
  • No Captcha & No AdSense
  • Advanced Exam Configuration
Get Contributor Access
Question #6
Refer to the exhibit.

Which statement best describe the role of the ADVPN device in handling traffic?
  1. A
    This is a hub that has received a query from a spoke and has forwarded it to another spoke.
  2. B
    This is a hub in a dual-region topology. The remote hub tunnel ID is 10.0.2.101.
  3. C
    This is a spoke that has received a shortcut query from another spoke and has forwarded the response to its hub.
  4. D
    This is a spoke. The kernel received a shortcut request and forwards the query to another spoke.

Correct Answer: A ?️

Question #7
Refer to the exhibit.

The administrator analyzed the traffic between a branch FortiGate and the server located in the data center, and noticed the behavior shown in the diagram. When the LAN clients located behind FGT1 establish a session to a server behind DC-1, the administrator observes that, on DC-1, the reply traffic is routed over T2, even though T1 is the preferred member in the matching SD-WAN rule.
What can the administrator do to instruct DC-1 to route the reply traffic through the member with the best performance?
  1. A
    Enable auxiliary-session under config system settings.
  2. B
    Enable snat-route-change under config system global.
  3. C
    Enable reply-session under config system sdwan.
  4. D
    FortiGate route lookup for reply traffic only considers routes over the original ingress interface.

Correct Answer: A ?️

Question #8
You are planning a large SD-WAN deployment with approximately 1000 spokes and want to allow ADVPN between the spokes. Some remote sites use FortiSASE to connect to the company’s SD-WAN hub.
Which overlay routing configuration should you use?
  1. A
    BGP on loopback with IPsec phase2 selectors for ADVPN shortcut routing.
  2. B
    BGP per overlay with dynamic BGP for ADVPN shortcut routing.
  3. C
    BGP per overlay with BGP next-hop convergence for ADVPN shortcut routing.
  4. D
    BGP on loopback with dynamic BGP for ADVPN shortcut routing.

Correct Answer: D ?️

Question #9
Refer to the exhibit that shows event logs on FortiGate.

Based on the output shown in the exhibit, what can you say about the tunnels on this device?
  1. A
    The master tunnel HUB2-VPN3 cannot accept ADVPN shortcuts.
  2. B
    There is one shortcut tunnel built from master tunnel VPV4.
  3. C
    The device steers voice traffic through the VPN tunnel HUB1-VPN3.
  4. D
    The VPN tunnel HUB1-VPN1_0 is a shortcut tunnel.

Correct Answer: D ?️

Question #10
Which three characteristics apply to provisioning templates available on FortiManager? (Choose three.)
  1. A
    A template group can include a system template and an SD-WAN template.
  2. B
    A CLI template group can contain CLI templates of both types.
  3. C
    Each template group can contain up to three IPsec tunnel templates.
  4. D
    A CLI template can be of type CLI script or Peri script.
  5. E
    CLI templates are applied in order, from top to bottom.

Correct Answer: ABE ?️

Previous Questions Next Questions

All Pages