Fortinet NSE7_EFW-7.0 Exam Practice Questions (P. 5)
- Full Access (60 questions)
- Six months of Premium Access
- Access to one million comments
- Seamless ChatGPT Integration
- Ability to download PDF files
- Anki Flashcard files for revision
- No Captcha & No AdSense
- Advanced Exam Configuration
Question #21
Refer to the exhibit, which shows a FortiGate configuration.
An administrator is troubleshooting a web filter issue on FortiGate. The administrator has configured a web filter profile and applied it to a policy; however, the web filter is not inspecting any traffic that is passing through the policy.
What must the administrator do to fix the issue?
An administrator is troubleshooting a web filter issue on FortiGate. The administrator has configured a web filter profile and applied it to a policy; however, the web filter is not inspecting any traffic that is passing through the policy.
What must the administrator do to fix the issue?
Question #22
Which two configuration commands change the default behavior for content-inspected traffic while FortiGate is in conserve mode? (Choose two.)
- Aset av-failopen off
- Bset av-failopen pass
- Cset fail-open enable
- Dset ips fail-open disable
Correct Answer:
BD
BD
GPT-4o - Answer
In conserve mode, FortiGate’s usual behavior is significantly altered to prioritize system stability. Specifically, the default settings are that the antivirus fail-open option allows traffic to pass ("pass") and the IPS fail-open is disabled, meaning it blocks traffic when resources are low. Adjustments like 'set av-failopen off' and 'set ips fail-open disable' change this default behavior, turning off this traffic pass-through for AV and ensuring continued blocking for IPS even in critical resource scenarios, thus enhancing system integrity and security under stress.
Question #23
Refer to the exhibit, which shows the output of a diagnose command.
What can you conclude from the output shown in the exhibit? (Choose two.)
What can you conclude from the output shown in the exhibit? (Choose two.)
Question #24
You have configured FortiManager as a local FDS to provide FortiGate AV and IPS updates, but FortiGate devices are not receiving updates to their AV signature databases, IPS engines, or IPS signature databases.
Which two settings need to be verified for these features to function? (Choose two.)
Which two settings need to be verified for these features to function? (Choose two.)
- AFortiGate needs to have the server list entry for FortiManager set to server-type update under config system central-management.
- BFortiManager needs to be the license validation server for FortiGate devices trying to retrieve updated AV and IPS packages.
- CService access needs to be enabled on FortiManager under System Settings > Network.
- DFortiGate needs to have include-default-servers disabled under config system central-management.
Correct Answer:
AC
AC
GPT-4o - Answer
Absolutely right in choosing A and C for ensuring FortiGate devices receive updates from a FortiManager configured as a local FDS. Crucially, setting the server-type to 'update' under config system central-management on the FortiGate ensures it recognizes FortiManager as a valid source for updates. Additionally, enabling service access on FortiManager is non-negotiable, as it allows communication from FortiGate devices to FortiManager for AV and IPS updates. Make sure these settings are spot on for smooth update rollouts!
Question #25
Refer to the exhibit, which shows the output of a debug command.
Which two statements about the output are true? (Choose two.)
Which two statements about the output are true? (Choose two.)
All Pages