Fortinet NSE5_FSW_AD-7.6 - Fortinet NSE 5 - FortiSwitch 7.6 Administrator Exam
Page: 1 / 7
Total 34 questions
Question #1 (Topic: Exam A)
Which two are valid traffic processing actions that a FortiSwitch access control list (ACL) can apply to matching traffic? (Choose two.)
A. Redirect frames to another port.
B. Assign traffic to a high-priority egress queue.
C. Encrypt frames.
D. Drop frames.
Answer: BD
Question #2 (Topic: Exam A)
Which two statements about 802.1X authentication on FortiSwitch ports are true? (Choose two.)
A. In port-based 802.1x, all hosts behind an authenticated port are allowed access after a successful authentication.
B. A port policy is used to apply 802.1x authentication on a FortiSwitch interface.
C. 802.1X authentication can be applied only to trunk ports and not access ports.
D. All devices connecting to FortiSwitch must support 802.1X authentication.
Answer: AB
Question #3 (Topic: Exam A)
Refer to the exhibits.
Topology view
Core-1 CLI output
Core-2 CLI output
An administrator has deployed two FortiSwitch devices, Core-1 and Core-2, as multichassis link aggregation group (MCLAG) peers. These switches are connected to FortiGate for FortiLink and to an access switch (Access-1) using an inter-switch link (ISL). After configuration, the administrator notices that both Core-1 and Core-2 are claiming to be the root bridge in the Multiple Spanning Tree Protocol (MSTP) topology.
What explains this behavior?
Topology view
Core-1 CLI output
Core-2 CLI output
An administrator has deployed two FortiSwitch devices, Core-1 and Core-2, as multichassis link aggregation group (MCLAG) peers. These switches are connected to FortiGate for FortiLink and to an access switch (Access-1) using an inter-switch link (ISL). After configuration, the administrator notices that both Core-1 and Core-2 are claiming to be the root bridge in the Multiple Spanning Tree Protocol (MSTP) topology.
What explains this behavior?
A. FortiGate participates in MSTP and causes both switches to assume the root bridge role.
B. The ISL was not configured correctly, leading to MSTP inconsistency.
C. Both switches share the same bridge ID because MCLAG treats them as one logical switch.
D. MCLAG automatically disables STP on all peer switches.
Answer: C
Question #4 (Topic: Exam A)
Refer to the exhibit.
Network Topology
You configured Switched Port Analyzer (SPAN) to monitor traffic from a source port on FortiSwitch 1, but the monitoring device is connected to FortiSwitch 2. After port mirroring configuration on FortiSwitch 1, the monitoring device is not receiving any mirrored traffic.
What is the most likely reason the mirrored traffic is not reaching the monitoring device?
Network Topology
You configured Switched Port Analyzer (SPAN) to monitor traffic from a source port on FortiSwitch 1, but the monitoring device is connected to FortiSwitch 2. After port mirroring configuration on FortiSwitch 1, the monitoring device is not receiving any mirrored traffic.
What is the most likely reason the mirrored traffic is not reaching the monitoring device?
A. SPAN does not support forwarding mirrored traffic across multiple switches.
B. SPAN traffic must be filtered with an access control list (ACL).
C. The SPAN session must be restarted after configuration.
D. The monitoring device must use a management IP in the same subnet.
Answer: A
Question #5 (Topic: Exam A)
What happens if FortiSwitch fails to discover either FortiEdge Cloud or a FortiGate with FortiLink?
A. It switches to FortiLink mode by default.
B. It remains in local management mode.
C. It requires manual reimaging.
D. It disables auto-network.
Answer: B
