Nest 0 Cart
Nest Account
Popular Exams
All Categories...
Nest
Nest 0
Contact
Log In / Sign Up
Copyright 2024 © store. All rights reserved.
Home Fortinet NSE7_SDW-7.0

Fortinet NSE7_SDW-7.0 Exam Practice Questions (P. 5)

  • Full Access (62 questions)
  • Six months of Premium Access
  • Access to one million comments
  • Seamless ChatGPT Integration
  • Ability to download PDF files
  • Anki Flashcard files for revision
  • No Captcha & No AdSense
  • Advanced Exam Configuration
Get Contributor Access
Question #21
Refer to the exhibits.


Which two statements about the IPsec VPN configuration and the status of the IPsec VPN tunnel are true? (Choose two.)
  1. A
    FortiGate does not install IPsec static routes for remote protected networks in the routing table.
  2. B
    The phase 1 configuration supports the network-overlay setting.
  3. C
    FortiGate facilitated the negotiation of the T_INET_1_0_0 ADVPN shortcut over T_INET_1_0.
  4. D
    Dead peer detection is disabled.

Correct Answer:
AC

Question #22
Refer to the exhibits.

Exhibit A -


Exhibit B -

Exhibit A shows the source NAT (SNAT) global setting and exhibit B shows the routing table on FortiGate.
Based on the exhibits, which two actions does FortiGate perform on existing sessions established over port2, if the administrator increases the static route priority on port2 to 20? (Choose two.)
  1. A
    FortiGate flags the sessions as dirty.
  2. B
    FortiGate continues routing the sessions with no SNAT, over port2.
  3. C
    FortiGate performs a route lookup for the original traffic only.
  4. D
    FortiGate updates the gateway information of the sessions with SNAT so that they use port1 instead of port2.

Correct Answer:
AD

Question #23
Refer to the exhibits.

Exhibit A -


Exhibit B -

Exhibit A shows the SD-WAN performance SLA configuration, the SD-WAN rule configuration, and the application IDs of Facebook and YouTube. Exhibit B shows the firewall policy configuration and the underlay zone status.
Based on the exhibits, which two statements are correct about the health and performance of port1 and port2? (Choose two.)
  1. A
    The performance is an average of the metrics measured for Facebook and YouTube traffic passing through the member.
  2. B
    FortiGate is unable to measure jitter and packet loss on Facebook and YouTube traffic.
  3. C
    FortiGate identifies the member as dead when there is no Facebook and YouTube traffic passing through the member.
  4. D
    Non-TCP Facebook and YouTube traffic are not used for performance measurement.

Correct Answer:
AD

Question #24
Refer to the exhibits.

Exhibit A -


Exhibit B -

Exhibit A shows an SD-WAN event log and exhibit B shows the member status and the SD-WAN rule configuration.
Based on the exhibits, which two statements are correct? (Choose two.)
  1. A
    FortiGate updated the outgoing interface list on the rule so it prefers port2.
  2. B
    Port2 has the highest member priority.
  3. C
    Port2 has a lower latency than port1.
  4. D
    SD-WAN rule ID 1 is set to lowest cost (SLA) mode.

Correct Answer:
AC

Question #25
Which best describes the SD-WAN traffic shaping mode that bases itself on a percentage of available bandwidth?
  1. A
    Interface-based shaping mode
  2. B
    Reverse-policy shaping mode
  3. C
    Shared-policy shaping mode
  4. D
    Per-IP shaping mode

Correct Answer:
A
chatbot-img GPT-4o - Answer
The perfect way to think about Interface-based shaping mode is that it adjusts traffic limits as a chunk of the total available bandwidth on an interface. This makes it super effective for managing bandwidth dynamically, reflecting real-time changes in network capacity and ensuring optimal performance across different conditions. So yeah, just imagine intuitively distributing bandwidth where it's most needed, based on how busy each line gets. Cool, right?

Previous Questions Next Questions

All Pages