- Email support@dumps4free.com
An administrator wants to configure dead peer detection (DPD) on IPsec VPN for detecting dead tunnels. The requirement is that FortiGate sends DPD probes only when there is outbound traffic but no response from the peer.
Which DPD mode on FortiGate meets this requirement?
A. On Demand
B. On Idle
C. Disabled
D. Enabled
Which two statements are correct when FortiGate enters conserve mode? (Choose two.)
A. FortiGate halts complete system operation and requires a reboot to regain available resources
B. FortiGate refuses to accept configuration changes
C. FortiGate continues to run critical security actions, such as quarantine.
D. FortiGate continues to transmit packets without IPS inspection when the fail-open global setting in IPS is enabled
Which engine handles application control traffic on the next-generation firewall (NGFW) FortiGate?
A. Internet Service Database (ISDB) engine
B. Intrusion prevention system engine
C. Antivirus engine
D. Application control engine
An organization requires remote users to send external application data running on their PCs and access FTP resources through an SSUTLS connection.
Which FortiGate configuration can achieve this goal?
A. SSL VPN quick connection
B. SSL VPN tunnel
C. SSL VPN bookmark
D. Zero trust network access
Which two pieces of information are synchronized between FortiGate HA members? (Choose two.)
A. OSPF adjacencies
B. IPsec security associations
C. BGP peerings
D. DHCP leases
| Page 6 out of 18 Pages |
| Previous |