Refer to the exhibit, which shows a network diagram.
Which protocol should you use to configure the FortiGate cluster?
Answer : C
After enabling IPS, you receive feedback about traffic being dropped.
What could be the reason?
Answer : C
Refer to the exhibit which shows an ADVPN network.
Which VPN phase 1 parameters must you configure on the hub for the ADVPN feature to function? (Choose two.)
Answer : AD
Which two statements about metadata variables are true? (Choose two.)
Answer : AC
Refer to the exhibits, which contain the network topology and BGP configuration for a hub.
Exhibit A.
Exhibit B.
An administrator is trying to configure ADVPN with a hub and spoke VPN setup using iBGP. All the VPNs are up and connected to the hub. The hub is receiving route information from both spokes over iBGP; however the spokes are not receiving route information from each other.
What change must the administrator make to the hub BGP configuration so that the routes learned from one spoke are forwarded to the other spoke?
Answer : B
Refer to the exhibit, which contains a partial VPN configuration.
What can you conclude from this configuration?
Answer : A
Refer to the exhibit which shows information about an OSPF interface.
What two conclusions can you draw from this command output? (Choose two.)
Answer : AC
Which two statements about the BFD parameter in BGP are true? (Choose two.)
Answer : CD
You created a VPN community using VPN Manager on FortiManager. You also added gateways to the VPN community. Now you are trying to create firewall policies to permit traffic over the tunnel; however, the VPN interfaces do not appear as available options.
What step must you take to resolve this issue?
Answer : B
Refer to the exhibit, which shows a central management configuration.
Which server will FortiGate choose for web filter rating requests, if 10.0.1.240 is experiencing an outage?
Answer : A
Which statement about the designated router (DR) and backup designated router (BDR) in an OSPF multi-access network is true?
Answer : B
Refer to the exhibit, which contains a partial policy configuration.
Which setting must you configure to allow SSH?
Answer : A
Refer to the exhibit, which shows an SSL certification inspection configuration.
Which action does FortiGate take if the server name indication (SNI) does not match either the common name (CN) or any of the subject alternative names (SAN) in the server certificate?
Answer : D
Refer to the exhibit, which contains a partial OSPF configuration.
What can you conclude from this output?
Answer : A
Refer to the exhibit, which contains an ADVPN network diagram and a partial BGP configuration.
Network diagram -
Partial BGP configuration -
Which two parameters should you configure in config neighbor-range? (Choose two.)
Answer : AC