CompTIA
Checkpoint
ISC
HP
Dell
EC-Council
EXIN
Fortinet
ITIL®
Juniper
PMI
Microsoft
VMware
Avaya
Google
Salesforce
Amazon
Palo Alto Networks
Certiport
ISC2
All Vendors
  2. Home
  3. Exams
  4. Fortinet
  5. NSE4_FGT-7.2

Free NSE4_FGT-7.2 Exam Braindumps (page: 3)

Page 3 of 44
PDF with 174 Questions

Which two configuration settings are synchronized when FortiGate devices are in an active-active HA cluster? (Choose two.)

  1. FortiGuard web filter cache
  2. FortiGate hostname
  3. NTP
  4. DNS

Answer(s): C,D

Explanation:

In the 7.2 Infrastructure Guide (page 306) the list of configuration settings that are NOT synchronized includes both 'FortiGate host name' and 'Cache'



An administrator wants to configure timeouts for users. Regardless of the userTMs behavior, the timer should start as soon as the user authenticates and expire after the configured value.
Which timeout option should be configured on FortiGate?

  1. auth-on-demand
  2. soft-timeout
  3. idle-timeout
  4. new-session
  5. hard-timeout

Answer(s): E

Explanation:

https://community.fortinet.com/t5/FortiGate/Technical-Tip-Explanation-of-auth-timeout-types-for- Firewall/ta-p/189423


Reference:

https://kb.fortinet.com/kb/documentLink.do?externalID=FD37221#:~:text=Hard%20timeout%3A%2 0User%20



Why does FortiGate Keep TCP sessions in the session table for several seconds, even after both sides (client and server) have terminated the session?

  1. To allow for out-of-order packets that could arrive after the FIN/ACK packets
  2. To finish any inspection operations
  3. To remove the NAT operation
  4. To generate logs

Answer(s): A

Explanation:

TCP provides the ability for one end of a connection to terminate its output while still receiving data from the other end. This is called a half-close. FortiGate unit implements a specific timer before removing an entry in the firewall session table.



Which two protocols are used to enable administrator access of a FortiGate device? (Choose two.)

  1. SSH
  2. HTTPS
  3. FTM
  4. FortiTelemetry

Answer(s): A,B


Reference:

https://docs.fortinet.com/document/fortigate/6.4.0/hardening-your- fortigate/995103/buildingsecurity-into-fortios






Post your Comments and Discuss Fortinet NSE4_FGT-7.2 exam with other Community members:

NSE4_FGT-7.2 Exam Discussions & Posts