CompTIA
Checkpoint
ISC
HP
Dell
EC-Council
EXIN
Fortinet
ITIL®
Juniper
PMI
Microsoft
VMware
Avaya
Google
Salesforce
Amazon
Palo Alto Networks
Certiport
ISC2
All Vendors
  2. Home
  3. Exams
  4. Fortinet
  5. NSE7_EFW-6.2

Free NSE7_EFW-6.2 Exam Braindumps (page: 7)

Page 7 of 24
PDF with 93 Questions

A FortiGate is rebooting unexpectedly without any apparent reason. What troubleshooting tools could an administrator use to get more information about the problem? (Choose two.)

  1. Firewall monitor.
  2. Policy monitor.
  3. Logs.
  4. Crashlogs.

Answer(s): C,D



Examine the following routing table and BGP configuration; then answer the question below.

The BGP connection is up, but the local peer is NOT advertising the prefix 192.168.1.0/24. Which configuration change will make the local peer advertise this prefix?

  1. Enable the redistribution of connected routers into BGP.
  2. Enable the redistribution of static routers into BGP.
  3. Disable the setting network-import-check.
  4. Enable the setting ebgp-multipath.

Answer(s): C



An administrator has configured a FortiGate device with two VDOMs: root and internal. The administrator has also created and inter-VDOM link that connects both VDOMs. The objective is to have each VDOM advertise some routes to the other VDOM via OSPF through the inter-VDOM link. What OSPF configuration settings must match in both VDOMs to have the OSPF adjacency successfully forming? (Choose three.)

  1. Router ID.
  2. OSPF interface area.
  3. OSPF interface cost.
  4. OSPF interface MTU.
  5. Interface subnet mask.

Answer(s): B,D,E



An administrator has decreased all the TCP session timers to optimize theFortiGate memory usage. However, after the changes, one network application started to have problems. During the troubleshooting, the administrator noticed that the FortiGate deletes the sessions after the clients send the SYN packets, and before the arrival of the SYN/ACKs. When the SYN/ACK packets arrive to the FortiGate, the unit has already
deleted the respective sessions. Which TCP session timer must be increased to fix this problem?

  1. TCP half open.
  2. TCP half close.
  3. TCP time wait.
  4. TCP session time to live.

Answer(s): A

Explanation:

http://docs-legacy.fortinet.com/fos40hlp/43prev/wwhelp/wwhimpl/commo n/html/wwhelp.htm?context=fgt&file=CLI_get_Commands.58.25.html
The tcp-halfopen-timer controls for how long, after a SYN packet, a session without SYN/ACKremains in the table.
The tcp-halfclose-timer controls for how long, after a FIN packet, asession without FIN/ACKremains in the table.
The tcp-timewait-timer controls for how long, after a FIN/ACK packet, a session remains in thetable. A closed session remains in the session table for a few seconds more to allow any out-of-sequence packet.



Page 7 of 24



Post your Comments and Discuss Fortinet NSE7_EFW-6.2 exam with other Community members:

FortiCareful commented on December 05, 2024
The exam prep material was very helpful in targeting the areas of the exam that I needed to concentrate on. I passed my exam easily.
UNITED STATES
upvote