New Year Special Limited Time 70% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code: 70percent

Fortinet NSE7_NST-7.2 Fortinet NSE 7 - Network Security 7.2 Support Engineer Exam Practice Test

Demo: 12 questions
Total 40 questions

Fortinet NSE 7 - Network Security 7.2 Support Engineer Questions and Answers

Question 1

Refer to the exhibit, which shows the modified output of the routing kernel.

Which statement is true?

Options:

A.

The BGP route to 10.0.4.0/24 is not in the forwarding information base.

B.

The default static route through port2 is in the forwarding information base.

C.

The default static route through 10.200.1.254 is not in the forwarding information base.

D.

The egress interface associated with static route 8.8.8.8/32 is administratively up.

Question 2

Referto the exhibit, which shows oneway communication of the downstream FortiGate with the upstream FortiGate within a Security Fabric.

What three actions must you take to ensure successful communication? (Choose three.)

Options:

A.

Ensure the port for Neighbor Discovery has been changed.

B.

FortiGate must not be in NAT mode.

C.

Ensure TCP port 8013 is not blocked along the way

D.

You must authorize the downstream FortiGate on the root FortiGate.

E.

You must enable Security Fabric/Fortitelemetry on the receiving interface of the upstream FortiGate.

Question 3

Refer to the exhibit, which shows the output of a diagnose command.

What can you conclude from the RTT value?

Options:

A.

Its value represents the time it takes to receive a response after a rating request is sent to a particular server.

B.

Its value is incremented with each packet lost.

C.

It determines which FortiGuard server is used for license validation.

D.

lts initial value is statically set to 10.

Question 4

Refer to the exhibit. whichcontains the output of diagnose vpn tunnellist.

Which command will capture ESP traffic for the VPN named DialUp_0?

Options:

A.

diagnose sniffer packet any ‘host10.0.10.10’

B.

diagnose sniffer packet any ‘ip proto 50’

C.

diagnose sniffer packet any ‘esp and host 10*200.3.2’

D.

diagnose sniffer packet any ‘port 4500’

Question 5

If the default settings are in place, what can you conclude about the conserve mode shown in the exhibit?

Options:

A.

FortiGate is currently blocking new sessions that require flow-based or proxy-based content inspection.

B.

FortiGate is currently blocking all new sessions regardless of the content inspection requirements or configuration settings because of high memory use.

C.

FortiGate is currently allowing new sessions that require flow-based or proxy-based content inspection but is not performing inspection on those sessions.

D.

FortiGate is currently allowing new sessions that require flow-based content inspection and blocking sessions that require proxy-based content inspection.

Question 6

What is the diagnosetest applicationipsmonitor 5 command used for?

Options:

A.

To disable the IPS engine

B.

To provide information regarding IPS sessions

C.

To restart all IPS engines and monitors

D.

To enable IPS bypass mode

Question 7

Refer to the exhibit,which shows the output of a diagnose command

What two conclusions can you draw from the output shown in the exhibit? (Choose two.)

Options:

A.

This is an expected session created by the IPS engine.

B.

Traffic in the original direction (coming from the IP address 10.171.121.38) will be routed to the next-hop IP address 10.0.1.10.

C.

Traffic in the original direction (coming from the IP address 10.171.121.38) will be routed to the next-hop IP address 10.200.1.1.

D.

This is a pinhole session created to allow traffic for a protocol that requires additional sessions to operate through FortiGate.

Question 8

Which statement is correct regarding LDAP authentication using the regular bind type?

Options:

A.

The regular bind type goes through four steps to successfully authenticate a user.

B.

The regular bind type cannot be used if users are authenticated using sAMAccountName.

C.

The regular bind type is the easiest bind type to configure on FortiOS.

D.

The regular bind typerequires a FortiGate super_adminaccount.

Question 9

Refer to the exhibit, which shows a partial output of the fssod daemon real-time debug command

What two conclusions can you draw from the output? (Choose two.)

Options:

A.

FSSO is using agentless polling mode to detect logon events.

B.

The workstation with IP 10.124.2.90 will be polled frequently using TCP port 445 to see if the user is still logged on

C.

The logon event can be seen on the collector agent installed on Windows.

D.

FSSO is using DC agent mode to detect logon events.

Question 10

Refer to the exhibit, which shows the output of get router info ospf neighbor.

What can you conclude from the command output?

Options:

A.

The local FortiGate Is not a DROther.

B.

All neighbors are in area 0.0.0.0.

C.

The local FortiGate is the BDR.

D.

The network type connectingthe local Fortigate and OSPF neighbor 0.0.0.10 is point-to-point.

Question 11

There are four exchanges during IKEv2 negotiation.

Which sequence is correct?

Options:

A.

IKE_Proposal,ID_Auth, PiggyBack_CHILD and Informational

B.

lnit_Req, Wait_lnit_Req,ID_Auth_Req and Create_CHILD_SA

C.

INIT_Re, INIT_Auth,ID_Child and SET_Nonce

D.

IKE_SAJNIT, IKE_Auth, Create_CHILD_SA and Informational

Question 12

Refer to the exhibits.

An administrator is attempting to advertise the network configured on port3. However, FGT-A is not receiving the prefix.

Which two actions can the administrator take to fix this problem'' (Choose two.)

Options:

A.

Restart BGP using a soft reset, which forces both peers to exchange their complete BGP routing tables.

B.

Manually add the BGP route on FGT-A.

C.

Modify the prefix using the network command from 172.16.0.0/16 to 172.16.54.0724.

D.

Use the set network-import-check disable command.

Demo: 12 questions
Total 40 questions