Nest 0 Cart
Nest Account
Popular Exams
All Categories...
Nest
Nest 0
Contact
Log In / Sign Up
Copyright 2024 © store. All rights reserved.
Home Fortinet NSE4_FGT-7.0

Fortinet NSE4_FGT-7.0 Exam Practice Questions (P. 5)

  • Full Access (106 questions)
  • One Year of Premium Access
  • Access to one million comments
  • Seamless ChatGPT Integration
  • Ability to download PDF files
  • Anki Flashcard files for revision
  • No Captcha & No AdSense
  • Advanced Exam Configuration
Get Contributor Access
Question #21
Refer to the exhibit, which contains a session list output.

Based on the information shown in the exhibit, which statement is true?
  1. A
    One-to-one NAT IP pool is used in the firewall policy.
  2. B
    Destination NAT is disabled in the firewall policy.
  3. C
    Port block allocation IP pool is used in the firewall policy.
  4. D
    Overload NAT IP pool is used in the firewall policy.

Correct Answer:
A

Question #22
Which two statements are correct about SLA targets? (Choose two.)
  1. A
    You can configure only two SLA targets per one Performance SLA.
  2. B
    SLA targets are optional.
  3. C
    SLA targets are required for SD-WAN rules with a Best Quality strategy.
  4. D
    SLA targets are used only when referenced by an SD-WAN rule.

Correct Answer:
BD
Reference:
https://docs.fortinet.com/document/fortigate/6.2.0/cookbook/382233/performance-sla-sla-targets

Question #23
Refer to the exhibit, which contains a session diagnostic output.

Which statement is true about the session diagnostic output?
  1. A
    The session is in SYN_SENT state.
  2. B
    The session is in FIN_WAIT state.
  3. C
    The session is in ESTABLISHED state.
  4. D
    The session is in FIN_ACK state.

Correct Answer:
A
Reference:
https://kb.fortinet.com/kb/viewContent.do?externalId=FD30042

Question #24
Which statement is correct regarding the inspection of some of the services available by web applications embedded in third-party websites?
  1. A
    The security actions applied on the web applications will also be explicitly applied on the third-party websites.
  2. B
    The application signature database inspects traffic only from the original web application server.
  3. C
    FortiGuard maintains only one signature of each web application that is unique.
  4. D
    FortiGate can inspect sub-application traffic regardless where it was originated.

Correct Answer:
D
Reference:
https://help.fortinet.com/fortiproxy/11/Content/Admin%20Guides/FPX-AdminGuide/300_System/303d_FortiGuard.htm

Question #25
Which engine handles application control traffic on the next-generation firewall (NGFW) FortiGate?
  1. A
    Intrusion prevention system engine
  2. B
    Detection engine
  3. C
    Flow engine
  4. D
    Antivirus engine

Correct Answer:
A
Reference:
http://docs.fortinet.com/document/fortigate/6.0.0/handbook/240599/application-control

Previous Questions Next Questions

All Pages