Download Fortinet NSE 7 -Enterprise Firewall 6-2.CertDumps.NSE7_EFW-6.2.2020-10-07.1e.63q.vcex

Download Exam

File Info

Exam Fortinet NSE 7 - Enterprise Firewall 6.2
Number NSE7_EFW-6.2
File Name Fortinet NSE 7 -Enterprise Firewall 6-2.CertDumps.NSE7_EFW-6.2.2020-10-07.1e.63q.vcex
Size 10.92 Mb
Posted October 07, 2020
Downloads 34

How to open VCEX & EXAM Files?

Files with VCEX & EXAM extensions can be opened by ProfExam Simulator.

Purchase
Coupon: EXAM_HUB

Discount: 20%

 
 



Demo Questions

Question 1
A FortiGate is configured as an explicit web proxy. Clients using this web proxy are reposting DNS errors when accessing any website. The administrator executes the following debug commands and observes that the n-dns-timeout counter is increasing:

   

What should the administrator check to fix the problem?

  • A: The connectivity between the FortiGate unit and the DNS server.
  • B: The connectivity between the client workstations and the DNS server.
  • C: That DNS traffic from client workstations is allowed by the explicit web proxy policies.
  • D: That DNS service is enabled in the explicit web proxy interface.  



Question 2
Examine the output from the 'diagnose debug authd fsso list' command; then answer the question below. 
# diagnose debug authd fsso list —FSSO logons-IP: 192.168.3.1 User: STUDENT Groups: TRAININGAD/USERS Workstation: INTERNAL2. TRAINING. LAB The IP address 192.168.3.1 is NOT the one used by the workstation INTERNAL2. TRAINING. LAB. 
What should the administrator check?

  • A: The IP address recorded in the logon event for the user STUDENT.
  • B: The DNS name resolution for the workstation name INTERNAL2. TRAINING. LAB.  
  • C: The source IP address of the traffic arriving to the FortiGate from the workstation INTERNAL2. TRAINING. LAB.
  • D: The reserve DNS lookup forthe IP address 192.168.3.1.



Question 3
What events are recorded in the crashlogs of a FortiGate device? (Choose two.)

  • A: A process crash.
  • B: Configuration changes.
  • C: Changes in the status of any of the FortiGuard licenses.
  • D: System entering to and leaving from the proxy conserve mode. 



Question 4
View the global IPS configuration, and then answer the question below. 

   

Which of the following statements is true regarding this configuration?

  • A: IPS will scan every byte in every session.
  • B: FortiGate will spawn IPS engine instances based on the system load.
  • C: New packets will be passed through without inspection if the IPS socket buffer runs out of memory.
  • D: IPS will use the faster matching algorithm which is only available for units with more than 4 GB memory.



Question 5
Four FortiGate devices configured for OSPF connected to the same broadcast domain. The first unit is elected as the designated router The second unit is elected as the backup designated router Under normal operation, how many OSPF full adjacencies are formed to each of the other two units?

  • A: 1
  • B: 2
  • C: 3
  • D: 4



Question 6
View the exhibit, which contains the partial output of a diagnose command, and then answer the question below. 

   

Based on the output, which of the following statements is correct?

  • A: Anti-reply is enabled.
  • B: DPD is disabled.
  • C: Quick mode selectors are disabled.
  • D: Remote gateway IP is 10.200.5.1. 



Question 7
View the exhibit, which contains the output of diagnose sys session list, and then answer the question below. 

   

If the HA ID for the primary unit is zero (0), which statement is correct regarding the output?

  • A: This session is for HA heartbeat traffic.
  • B: This session is synced with the slave unit.
  • C: The inspection of this session has been offloaded to the slave unit.
  • D: This session cannot be synced with the slave unit.



Question 8
View the following FortiGate configuration. 

   

All traffic to the Internet currently egresses from port1. The exhibit shows partial session information for Internet traffic from a user on the internal network:

   

If the priority on route ID 1 were changed from 5 to 20, what would happen to traffic matching that user’s session? 

  • A: The session would remain in the session table, and its traffic would still egress from port1.
  • B: The session would remain in the session table, but its traffic would now egress from both port1 and port2.
  • C: The session would remain in the session table, and its traffic would start to egress from port2.
  • D: The session would be deleted, so the client would need to start a new session.



Question 9
Which of the following statements are true regarding the SIP session helper and the SIP application layer gateway (ALG)? (Choose three.)

  • A: SIP session helper runs in the kernel; SIP ALG runs as a user space process.
  • B: SIP ALG supports SIP HA failover; SIP helper does not.
  • C: SIP ALG supports SIP over IPv6; SIP helper does not.
  • D: SIP ALG can create expected sessions for media traffic; SIP helper does not.
  • E: SIP helper supports SIP over TCP and UDP; SIP ALG supports only SIP over UDP.



Question 10
View the exhibit, which contains the output of a debug command, and then answer the question below. 

   

Which one of the following statements about this FortiGate is correct? 

  • A: It is currently in system conserve mode because of high CPU usage.
  • B: It is currently in extreme conserve mode because of high memory usage.
  • C: It is currently in proxy conserve mode because of high memory usage.
  • D: It is currently in memory conserve mode because of high memory usage.






CONNECT US


ProfExam
PROFEXAM WITH A 20% DISCOUNT

You can buy ProfExam with a 20% discount..

Get Now!


HOW TO OPEN VCEX AND EXAM FILES

Use ProfExam Simulator to open VCEX and EXAM files
ProfExam Screen



HOW TO OPEN VCE FILES

Use VCE Exam Simulator to open VCE files
Avanaset