Nest 0 Cart
Nest Account
Popular Exams
All Categories...
Nest
Nest 0
Contact
Log In / Sign Up
Copyright 2024 © store. All rights reserved.
Home Fortinet NSE8_812

Fortinet NSE8_812 Exam Practice Questions (P. 4)

  • Full Access (117 questions)
  • Six months of Premium Access
  • Access to one million comments
  • Seamless ChatGPT Integration
  • Ability to download PDF files
  • Anki Flashcard files for revision
  • No Captcha & No AdSense
  • Advanced Exam Configuration
Get Contributor Access
Question #16
Refer to the exhibit, which shows a Branch1 configuration and routing table.

In the SD-WAN implicit rule, you do not want the traffic load balance for the overlay interface when all members are available.
In this scenario, which configuration change will meet this requirement?
  1. A
    Change the load-balance-mode to source-ip-based.
  2. B
    Create a new static route with the internet sdwan-zone only.
  3. C
    Configure the cost in each overlay member to 10.
  4. D
    Configure the priority in each overlay member to 10.

Correct Answer:
D

Question #17
Refer to the exhibits.

GUI Access -


Configuration -


Topology -

An administrator has configured a FortiGate and FortiAuthenticator for two-factor authentication with FortiToken push notifications for their SSL VPN login. Upon initial review of the setup, the administrator has discovered that the customers can manually type in their two-factor code and authenticate but push notifications.
Based on the information given in the exhibits, what must be done to fix this?
  1. A
    On FG-1 port1, the ftm access protocol must be enabled.
  2. B
    FAC-1 must have an internet routable IP address for push notifications.
  3. C
    On FG-1 CLI, the ftm-push server setting must point to 100.64.1.41.
  4. D
    On FAC-1, the FortiToken public IP setting must point to 100.64.1.41.

Correct Answer:
D

Question #18
Refer to the exhibit.

A customer has deployed a FortiGate 300E with virtual domains (VDOMs) enabled in the multi-VDOM mode. There are three VDOMs: Root is for management and internet access, while VDOM 1 and VDOM 2 are used for segregating internal traffic. AccountVInk and SalesVInk are standard VDOM links in Ethernet mode.
Given the exhibit, which two statements below about VDOM behavior are correct? (Choose two.)
  1. A
    You can apply OSPF routing on the VDOM link in either PPP or Ethernet mode
  2. B
    Traffic on AccountVInk and SalesVInk will not be accelerated
  3. C
    The VDOM links are in Ethernet mode because they have IP addressed assigned on both sides
  4. D
    Root VDOM is an Admin type VDOM, while VDOM 1 and VDOM 2 are Traffic type VDOMs
  5. E
    OSPF routing can be configured between VDOM 1 and Root VDOM without any configuration changes to AccountVInk

Correct Answer:
C

Question #19
You are responsible for recommending an adapter type for NICs on a FortiGate VM that will run on an ESXi Hypervisor.
Your recommendation must consider performance as the main concern, cost is not a factor.
Which adapter type for the NICs will you recommend?
  1. A
    Native ESXi Networking with E1000
  2. B
    Virtual Function (VF) PCI Passthrough
  3. C
    Native ESXi Networking with VMXNET3
  4. D
    Physical Function (PF) PCI Passthrough

Correct Answer:
C

Question #20
You are deploying a FortiExtender (FEX) on a ForiGate-60F. The FEX will be managed by the FortiGate. You anticipate high utilization. The requirement is to minimize the overhead on the device for WAN traffic.
Which action achieves the requirement in this scenario?
  1. A
    Add a switch between the FortiGate and FEX.
  2. B
    Enable CAPWAP connectivity between the FortiGate and the FortiExtender
  3. C
    Change connectivity between the FortiGate and the FortiExtender to use VLAN Mode
  4. D
    Add a VLAN under the FEX-WAN interface on the FortiGate

Correct Answer:
C

Previous Questions Next Questions

All Pages