Summer Special Limited Time 65% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code: exc65

examout.co

Refer to the exhibit which shows an OSPF network.

Which types of link-state advertisements (LSA) will NGFW-1 send if it is a backup designated router (BDR)

A.

NGFW-1 will send type 1 and type 2 LSAs

B.

NGFW-1 will send type 1 and type 4 LSAs.

C.

NGFW-1 will send type 1 and type 3 LSAs

D.

NGFW-1 will send type 1 and type 5 LSAs

Exhibit.

Refer to the exhibit, which shows an ADVPN network.

The client behind Spoke-1 generates traffic to the device located behind Spoke-2.

Which first message floes the hub send to Spoke-110 bring up the dynamic tunnel?

A.

Shortcut query

B.

Shortcut reply

C.

Shortcut offer

D.

Shortcut forward

Which statement about ADVPN is true?

A.

lt only uses BGP for dynamic routing

B.

It requires all the devices must be on the same AS for inter-region ADVPN topology

C.

lt is a combination of hub-and spoke and full-mesh topologies

D.

It supports only on single hub-and spoke architecture

Refer to the exhibit, which shows a routing table.

What two options can you configure in OSPF to block the advertisement of the 10.1.10.0 prefix? (Choose two.)

A.

Remove the 16.1.10.C prefix from the OSPF network

B.

Configure a distribute-list-out

C.

Configure a route-map out

D.

Disable Redistribute Connected

Refer to the exhibit, which shows an SSL certification inspection configuration.

Which action does FortiGate take if the server name indication (SNI) does not match either the common name (CN) or any of the subject alternative names (SAN) in the server certificate?

A.

FortiGate uses the first entry listed in the SAN field in the server certificate

B.

FortiGate uses the CN information from the Subject field in the server certificate

C.

FortiGate uses the SNI from the user's web browser.

D.

FortiGate closes the connection because this represents an invalid SSL/TLS configuration

Which statement about the designated router (DR) and backup designated router (BDR) in an OSPF multi-access network is true?

A.

Only the DR receives link state information from non-DR routers.

B.

Non-DR and non-BDR routers form full adjacencies to DR only.

C.

FortiGate first checks the OSPF ID to elect a DR.

D.

Non-DR and non-BDR routers send link state updates and acknowledgements to 224.0.0.6.

Refer to the exhibit, which shows an ADVPN network.

Which VPN phase 1 parameters must you configure on the hub for the ADVPN feature to function? (Choose two.)

A.

set auto-discovery-forwarder enable

B.

set add-route enable

C.

set auto-discovery-receiver enable

D.

set auto-discovery-sender enable

Refer to the exhibit.

which contains a partial configuration of the global system. What can you conclude from this output?

A.

NPs and CPs are enabled

B.

Only CPs arc disabled

C.

Only NPs are disabled

D.

NPs and CPs arc disabled

Which two statements about metadata variables are true? (Choose two.)

A.

You create them on FortiGate

B.

They apply only to non-firewall objects.

C.

The metadata format is $.

D.

They can be used as variables in scripts

You created a VPN community using VPN Manager on FortiManager. You also added gateways to the VPN community. Now you are trying to create firewall policies to permit traffic over the tunnel however, the VPN interfaces do not appear as available options.

A.

Create interface mappings for the IPsec VPN interfaces before you use them in a policy.

B.

Refresh the device status using the Device Manager so that FortiGate populates the IPSec interfaces

C.

Configure the phase 1 settings in the VPN community that you didnt initially configure. FortiGate automatically generates the interfaces after you configure the required settings

D.

install the VPN community and gateway configuration on the fortiGate devices so that the VPN interfaces appear on the Policy Objects on fortiManager.