Fortinet NSE5_FMG-7.2 Exam Practice Questions (P. 5)
- Full Access (63 questions)
- Six months of Premium Access
- Access to one million comments
- Seamless ChatGPT Integration
- Ability to download PDF files
- Anki Flashcard files for revision
- No Captcha & No AdSense
- Advanced Exam Configuration
Question #21
Refer to the exhibit.
Given the configuration shown in the exhibit, how did FortiManager handle the service category named General?
Given the configuration shown in the exhibit, how did FortiManager handle the service category named General?
Question #22
An administrator is in the process of moving the system template profile between ADOMs by running the following command: execute fmprofile import-profile ADOM2 3547 /tmp/myfile
Where does the administrator import the file from?
Where does the administrator import the file from?
- AFile system
- BADOM1
- CADOM2 object database
- DADOM2
Correct Answer:
A
A
GPT-4o - Answer
Absolutely, the correct choice is the file system. Here's the scoop: when you hit up the command `execute fmprofile import-profile`, you're specifying a whole path, right? That `/tmp/myfile` bit means you're pulling the profile directly from the FortiManager's file system. No tricks here; it's pretty direct and about as straightforward as it gets in terms of where you're sourcing your file from when moving stuff between ADOMs. Just ensure that path is spot on!
Question #23
What does a policy package status of Never Installed indicate?
- AThe policy configuration has been changed on a managed device and changes have not yet been imported into FortiManager.
- BFortiManager is unable to determine the policy package status.
- CThe policy configuration has been changed on FortiManager and changes have not yet been installed on the managed device.
- DThe policy package was never imported after a device was registered on FortiManager.
Correct Answer:
D
D
GPT-4o - Answer
When a policy package status shows "Never Installed," it means that either no policy package has been assigned to the unit or policies and objects have yet to be imported after device registration. Thus, there's no existing configuration to install from FortiManager onto the managed device. Ensure that every new device is properly set up with an assigned policy package or properly imported to avoid this status.
Question #24
Refer to the exhibit.
If both FortiManager and FortiGate are behind the NAT devices, what are the two expected results? (Choose two.)
If both FortiManager and FortiGate are behind the NAT devices, what are the two expected results? (Choose two.)
Question #25
When an installation is performed from FortiManager, what is the recovery logic used between FortiManager and FortiGate for an FGFM tunnel?
- AFortiGate will reject the CLI commands that will cause the tunnel to go down.
- BFortiManager will revert and install a previous configuration revision on the managed FortiGate.
- CFortiManager will not push the CLI commands as part of the installation that will cause the tunnel to go down.
- DAfter 15 minutes, FortiGate will unset all CLI commands that were part of the installation that caused the tunnel to go down.
Correct Answer:
D
D
GPT-4o - Answer
In the context of the recovery logic used between FortiManager and FortiGate for an FGFM tunnel, it's crucial to understand that if FortiGate detects an issue where the installation of new CLI commands disrupts the tunnel, it automatically initiates a recovery process. This process involves waiting for a period of 15 minutes to check if the connection can be reestablished. If it cannot, FortiGate employs the unset command on the new changes. This automatic mechanism, detailed in the FortiManager diagnostic manual, ensures network stability by potentially reverting to prior configurations if necessary. Furthermore, the appliance's ability to reboot under specific conditions enhances recovery prospects. This serves as an essential safeguard, keeping communications intact between FortiManager and FortiGate.
All Pages