Fortinet NSE7_EFW-6.4 Exam Practice Test Instant Access

Question 1

Which of the following statements is true regarding a FortiGate configured as an explicit web proxy?

AFortiGate limits the number of simultaneous sessions per explicit web proxy user. This limit CANNOT be modified by the administrator.

BFortiGate limits the total number of simultaneous explicit web proxy users.

CFortiGate limits the number of simultaneous sessions per explicit web proxy user The limit CAN be modified by the administrator

DFortiGate limits the number of workstations that authenticate using the same web proxy user credentials. This limit CANNOT be modified by the administrator.

Answer : B

Question 2

Examine the output from the BGP real time debug shown in the exhibit, then the answer the question below:

Which statements are true regarding the output in the exhibit? (Choose two.)

ABGP peers have successfully interchanged Open and Keepalive messages.

BLocal BGP peer received a prefix for a default route.

CThe state of the remote BGP peer is OpenConfirm.

DThe state of the remote BGP peer will go to Connect after it confirms the received prefixes.

Answer : A, B

Question 3

A FortiGate's portl is connected to a private network. Its port2 is connected to the Internet. Explicit web proxy is enabled in port1 and only explicit web proxy users can access the Internet. Web cache is NOT enabled. An internal web proxy user is downloading a file from the Internet via HTTP. Which statements are true regarding the two entries in the FortiGate session table related with this traffic? (Choose two.)

ABoth session have the local flag on.

BThe destination IP addresses of both sessions are IP addresses assigned to FortiGate's interfaces.

COne session has the proxy flag on, the other one does not.

DOne of the sessions has the IP address of port2 as the source IP address.

Answer : A, D

Question 4

Which statement is true regarding File description (FD) conserve mode?

AIPS inspection is affected when FortiGate enters FD conserve mode.

BA FortiGate enters FD conserve mode when the amount of available description is less than 5%.

CFD conserve mode affects all daemons running on the device.

DRestarting the WAD process is required to leave FD conserve mode.

Answer : B

Question 5

Which two statements about FortiManager is true when it is deployed as a local FDS? (Choose two.)

AIt caches available firmware updates for unmanaged devices.

BIt can be configured as an update server, or a rating server, but not both.

CIt supports rating requests from both managed and unmanaged devices.

DIt provides VM license validation services.

Answer : C, D

Question 6

View the exhibit, which contains the output of a real-time debug, Which statement about this output is true?

Which of the following statements is true regarding this output?

AThe requested URL belongs to category ID 255.

BThe server hostname Is training, fortinet.com.

CFortiGate found the requested URL in its local cache.

DThis web request was inspected using the ftgd-allow web filler profile.

Answer : C

Question 7

View the exhibit, which contains the partial output of a diagnose command, and then answer the question below.

Based on the output, which of the following statements is correct?

AAnti-reply is enabled.

BDPD is disabled.

CQuick mode selectors are disabled.

DRemote gateway IP is 10.200.5.1.

Answer : A

Fortinet NSE7_EFW-6.4 Fortinet NSE 7 - Enterprise Firewall 6.4 Exam Practice Test