NSE7_EFW-6.4 Exam - Free Fortinet Questions and Answers

Question #1 (Topic: Single Topic)

Which two tasks are automated using the Install Wizard on FortiManager? (Choose two.)

A. Installing configuration changes to managed devices B. Importing interface mappings from managed devices C. Adding devices to FortiManager D. Previewing pending configuration changes for managed devices

Answer: AD

Question #2 (Topic: Single Topic)

Refer to the exhibit, which contains the partial output of the get vpn ipsec tunnel details command.

Based on the output, which two statements are correct? (Choose two.)

A. Phase 2 authentication is set to sha1 on both sides. B. Anti-replay is disabled. C. Hub2Spoke1 is a policy-based VPN. D. Hub2Spoke1 is configured on interface wan2.

Answer: AD

Question #3 (Topic: Single Topic)

Refer to the exhibit, which shows the output of a debug command.

Which two statements about the output are true? (Choose two.)

A. The local FortiGate OSPF router ID is 0.0.0.4. B. Port4 is connected to the OSPF backbone area. C. In the network connected to port4, two OSPF routers are down. D. The local FortiGate is the backup designated router.

Answer: AB

Question #4 (Topic: Single Topic)

Refer to the exhibit, which contains the partial output of a diagnose command.

Based on the output, which two statements are correct? (Choose two.)

A. Anti-replay is enabled B. The remote gateway IP is 10.200.4.1. C. DPD is disabled. D. Quick mode selectors are disabled.

Answer: AB

Question #5 (Topic: Single Topic)

Refer to the exhibit, which contains partial output from an IKE real-time debug.

Which two statements about this debug output are correct? (Choose two.)

A. The remote gateway IP address is 10.0.0.1. B. The initiator provided remote as its IPsec peer ID. C. It shows a phase 1 negotiation. D. The negotiation is using AES128 encryption with CBC hash.

Answer: BC

Fortinet NSE7_EFW-6.4 - Fortinet NSE 7 - Enterprise Firewall 6.4 Exam