NSE7_EFW-6.0 Online Practice Questions and Answers

View the exhibit, which contains the output of diagnose sys session list, and then answer the question below.

If the HA ID for the primary unit is zero (0), which one of the following statements about the output is true?

A. This session is for HA heartbeat traffic.

B. This session cannot be synced with the slave unit.

C. The master unit is processing this traffic.

D. The inspection of this session has been offloaded to the slave unit.

View the global IPS configuration, and then answer the question below.

Which of the following statements is true regarding this configuration? (Choose two.)

A. IPS will scan every byte in every session.

B. IPS acceleration is disabled in this FortiGate device's configuration.

C. New packets requiring IPS inspection will be passed through during conserve mode.

D. FortiGate will spawn IPS engine instances based on the system load.

View the exhibit, which contains the output of a debug command, and then answer the question below.

Which one of the following statements about this FortiGate is correct?

A. It is currently in system conserve mode because of high CPU usage.

B. It is currently in extreme conserve mode because of high memory usage.

C. It is currently in proxy conserve mode because of high memory usage.

D. It is currently in memory conserve mode because of high memory usage.

What conditions are required for two FortiGate devices to form an OSPF adjacency? (Choose three.)

A. OSPF IP MTUs match.

B. OSPF costs match.

C. OSPF peer IDs match.

D. IP addresses are in the same subnet.

E. Hello and dead intervals match.

View the exhibit, which contains the output of a diagnose command, and then answer the question below.

Which statements are true regarding the output in the exhibit? (Choose two.)

A. FortiGate used 209.222.147.36 as the initial server to validate its contract.

B. Servers with the D flag are considered to be down.

C. FortiGate will probe 121.111.236.179 every fifteen minutes for a response.

D. Servers with a negative TZ value are experiencing a service outage.

View the exhibit, which contains the output of a real-time debug, and then answer the question below.

Which of the following statements are true regarding this output (Choose two.)

A. This web request was inspected using the root web filter profile.

B. The requested URL belongs to category ID 52.

C. The web request was blocked by FortiGate.

D. FortiGate found the requested URL in its local cache.

What configuration settings change the behavior for content-inspected traffic while FortiGate is in conserve mode? (Choose two.)

A. mem-failopen

B. ips-failopen

C. utm-failopen

D. av-failopen

View the following FortiGate configuration.

All traffic to the Internet currently egresses from port1. The exhibit shows partial session information for Internet traffic from a user on the internal network.

If the priority on route ID 1 were changed from 5 to 20, what would happen to traffic matching that user's session?

A. The session would be deleted, so the client would need to start a new session.

B. The session would remain in the session table, and its traffic would still egress from port1.

C. The session would remain in the session table, and its traffic would start to egress from port2.

D. The session would remain in the session table, but its traffic would now egress from both port1 and port2.

View these partial outputs from two routing debug commands:

Which outbound interface will FortiGate use to route web traffic from internal users to the Internet?

A. Both port1 and port2

B. port3

C. port2

D. port1

What is the purpose of an internal segmentation firewall (ISFW)?

A. It is the first line of defense at the network perimeter.

B. It inspects incoming traffic to protect services in the corporate DMZ.

C. It is an all-in-one security appliance that is placed at remote sites to extend the enterprise network.

D. It splits the network into multiple security segments to minimize the impact of breaches.