Summer Special Limited Time 65% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code: exc65

examout.co

How are bulk configuration changes made using FortiManager CLI scripts? (Choose two.)

A.

When run on the All FortiGate in ADOM, changes are automatically installed without the creation of a new revision history.

B.

When run on the Device Database, changes are applied directly to the managed FortiGate device.

C.

When run on the Remote FortiGate directly, administrators do not have the option to review the changes prior to installation.

D.

When run on the Policy Package, ADOM database, you must use the installation wizard to apply the changes to the managed FortiGate device

Refer to the exhibit, which shows a session entry. Which statement about this session is true?

A.

It is an ICMP session from 10.1.10.10 to 10.200.5. 1.

B.

It is a TCP session in close_wait state, from 10. l. 10.10 to 10.200.1.1.

C.

It is an ICMP session from 10.1.10.10 to 10.200.1.1.

D.

It is a TCP session in the established state, from 10.1.10.10 to 10.200.5.1.

What does the dirty flag mean in a FortiGate session?

A.

Traffic has been blocked by the antivirus inspection.

B.

The next packet must be re-evaluated against the firewall policies.

C.

The session must be removed from the former primary unit after an HA failover.

D.

Traffic has been identified as from an application that is not allowed.

Which two conditions must be met for a statistic route to be active in the routing table? (Choose two.)

A.

The link health monitor (if configured) is up.

B.

There is no other route, to the same destination, with a higher distance.

C.

The outgoing interface is up.

D.

The next-hop IP address is up.

Which two tasks are automated using the Install Wizard on FortiManager? (Choose two.)

A.

Installing configuration changes to managed devices

B.

Importing interface mappings from managed devices

C.

Adding devices to FortiManager

D.

Previewing pending configuration changes for managed devices

View the exhibit, which contains the output of a real-time debug, Which statement about this output is true?

Which of the following statements is true regarding this output?

A.

The requested URL belongs to category ID 255.

B.

The server hostname Is training, fortinet.com.

C.

FortiGate found the requested URL in its local cache.

D.

This web request was inspected using the ftgd-allow web filler profile.

Refer to the exhibit, which shows a partial routing table.

Assuming all the appropriate firewall policies are configured, which two pings will FortiGate route? (Choose two.)

A.

Source IP address: 10.1.0.10. Destination IP address: 10.64.1.52

B.

Source IPaddress: 10.72.3.52. Destination IP address: 10.1.0.254

C.

Source IPaddress: 10.10.4.24, Destination IPaddress: 10.72.3.20

D.

Source IPaddress: 10.73.9.10, Destination IPaddress: 10.72.3.15

A corporate network allows Internet Access to FSSO users only. The FSSO user student does not have Internet access after successfully logged into the Windows AD network. The output of the ‘diagnose debug authd fsso list’ command does not show student as an active FSSO user. Other FSSO users can access the Internet without problems. What should the administrator check? (Choose two.)

A.

The user student must not be listed in the CA’s ignore user list.

B.

The user student must belong to one or more of the monitored user groups.

C.

The student workstation’s IP subnet must be listed in the CA’s trusted list.

D.

At least one of the student’s user groups must be allowed by a FortiGate firewall policy.

How does FortiManager handle FortiGuard requests from FortiGate devices, when it is configured as a local FDS?

A.

FortiManager can download and maintain local copies of FortiGuard databases.

B.

FortiManager supports only FortiGuard push to managed devices.

C.

FortiManager will respond to update requests only if they originate from a managed device.

D.

FortiManager does not support rating requests.

Refer to the exhibit, which contains a CLI script configuration on FortiManager.

An administrator configured the CLI script on FortiManager, but the script failed to apply any changes to the managed device after being executed.

What are two reasons why the script did not make any changes to the managed device? (Choose two.)

A.

Static routes can be added using only TCL scripts.

B.

The commands that start with the # sign did not run.

C.

CLI scripts must start with #!.

D.

Incomplete commands can cause CLI scripts to fail.