Nest 0 Cart
Nest Account
Popular Exams
All Categories...
Nest
Nest 0
Contact
Log In / Sign Up
Copyright 2024 © store. All rights reserved.
Home Fortinet NSE4_FGT-6.2

Fortinet NSE4_FGT-6.2 Exam Practice Questions (P. 3)

  • Full Access (119 questions)
  • Six months of Premium Access
  • Access to one million comments
  • Seamless ChatGPT Integration
  • Ability to download PDF files
  • Anki Flashcard files for revision
  • No Captcha & No AdSense
  • Advanced Exam Configuration
Get Contributor Access
Question #11
Consider a new IPsec deployment with the following criteria:
✑ All satellite offices must connect to the two HQ sites.
✑ The satellite offices do not need to communicate directly with other satellite offices.
✑ Backup VPN is not required.
✑ The design should minimize the number of tunnels being configured.
Which topology should you use to satisfy all of the requirements?
  1. A
    Partial mesh
  2. B
    Redundant
  3. C
    Full mesh
  4. D
    Hub-and-spoke

Correct Answer:
D

Question #12
What criteria does FortiGate use to look for a matching firewall policy to process traffic? (Choose two.)
  1. A
    Services defined in the firewall policy.
  2. B
    Incoming and outgoing interfaces
  3. C
    Highest to lowest priority defined in the firewall policy.
  4. D
    Lowest to highest policy ID number.

Correct Answer:
AB

Question #13
Refer to the exhibit.
You are configuring the root FortiGate to implement the Security Fabric. You are configuring port10 to communicate with a downstream FortiGate. The exhibit shows the default Edit Interface.

When configuring the root FortiGate to communicate with a downstream FortiGate, which two settings must you configure? (Choose two.)
  1. A
    Enable Device Detection
  2. B
    Administrative Access: FortiTelemetry.
  3. C
    IP/Network Mask.
  4. D
    Role: Security Fabric.

Correct Answer:
BC

Question #14
Which two statements about NTLM authentication are correct? (Choose two.)
  1. A
    It requires DC agents on every domain controller when used in multidomain environments.
  2. B
    It is useful when users log in to DCs that are not monitored by a collector agent.
  3. C
    It requires NTLM-enabled web browsers.
  4. D
    It takes over as the primary authentication method when configured alongside FSSO.

Correct Answer:
BC
Reference:
https://www.fortinetguru.com/2016/07/configuring-authenticated-access/12/

Question #15
Refer to the exhibit.

A firewall administrator must configure equal cost multipath (ECMP) routing on FGT1 to ensure both port1 and port3 links are used, at the same time, for all traffic destined for 172.20.2.0/24.
Given the network diagram shown in the exhibit, which two static routes will satisfy this requirement on FGT1? (Choose two.)
  1. A
    172.20.2.0/24 [1/0] via 10.10.1.2, port1 [0/0]
  2. B
    172.20.2.0/24 [25/0] via 10.30.3.2, port3 [5/0]
  3. C
    172.20.2.0/24 [25/0] via 10.10.1.2, port1 [5/0]
  4. D
    172.20.2.0/24 [1/150] via 10.30.3.2, port3 [10/0]

Correct Answer:
BC

Previous Questions Next Questions

All Pages