Free NSE4_FGT-7.2 Exam Braindumps (page: 4)

Page 4 of 45

Refer to the exhibit.



Examine the intrusion prevention system (IPS) diagnostic command.
Which statement is correct If option 5 was used with the IPS diagnostic command and the outcome was a decrease in the CPU usage?

  1. The IPS engine was inspecting high volume of traffic.
  2. The IPS engine was unable to prevent an intrusion attack .
  3. The IPS engine was blocking all traffic.
  4. The IPS engine will continue to run in a normal state.

Answer(s): A

Explanation:

fortinet-fortigate-security-study-guide-for-fortios-72 page 417 If there are high-CPU use problems caused by the IPS, you can use the diagnose test application ipsmonitor command with option 5 to isolate where the problem might be. Option 5 enables IPS bypass mode. In this mode, the IPS engine is still running, but it is not inspecting traffic. If the CPU use decreases after that, it usually indicates that the volume of traffic being inspected is too high for that FortiGate model.


Reference:

https://docs.fortinet.com/document/fortigate/6.2.3/cookbook/232929/troubleshooting-high-cpu- usage



By default, FortiGate is configured to use HTTPS when performing live web filtering with FortiGuard servers.
Which CLI command will cause FortiGate to use an unreliable protocol to communicate with FortiGuard servers for live web filtering?

  1. set fortiguard-anycast disable
  2. set webfilter-force-off disable
  3. set webfilter-cache disable
  4. set protocol tcp

Answer(s): A

Explanation:

y default, "fortiguard-anycast" is enabled, and this setting only works with "set protocol https". To use udp (ie. "set protocol udp"), "fortiguard-anycast" must be disabled.


Reference:

https://kb.fortinet.com/kb/documentLink .do?externalID=FD48294

"By default, FortiGate is configured to enforce the use of HTTPS port 443 to perform live filtering with FortiGuard or FortiManager. Other ports and protocols are available by disabling the FortiGuard anycast setting on the CLI."



How does FortiGate act when using SSL VPN in web mode?

  1. FortiGate acts as an FDS server.
  2. FortiGate acts as an HTTP reverse proxy.
  3. FortiGate acts as DNS server.
  4. FortiGate acts as router.

Answer(s): B


Reference:

https://pub.kb.fortinet.com/ksmcontent/Fortinet-Public/current/Fortigate_v4.0MR3/fortigate- sslvpn-40-mr3.pdf



Which three statements explain a flow-based antivirus profile? (Choose three.)

  1. Flow-based inspection uses a hybrid of the scanning modes available in proxy-based inspection.
  2. If a virus is detected, the last packet is delivered to the client.
  3. The IPS engine handles the process as a standalone.
  4. FortiGate buffers the whole file but transmits to the client at the same time.
  5. Flow-based inspection optimizes performance compared to proxy-based inspection.

Answer(s): A,D,E


Reference:

https://forum .fortinet.com/tm .aspx?m=192309






Post your Comments and Discuss Fortinet NSE4_FGT-7.2 exam with other Community members:

NSE4_FGT-7.2 Exam Discussions & Posts