CompTIA
Checkpoint
ISC
HP
Dell
EC-Council
EXIN
Fortinet
ITIL®
Juniper
PMI
Microsoft
VMware
Avaya
Google
Salesforce
Amazon
Palo Alto Networks
Certiport
ISC2
All Vendors
  2. Home
  3. Exams
  4. Fortinet
  5. NSE7_EFW-6.4

Free NSE7_EFW-6.4 Exam Braindumps (page: 7)

Page 7 of 26
PDF with 122 Questions

View the following FortiGate configuration.



All traffic to theInternet currently egresses from port1. The exhibit shows partial session information for Internet traffic from a user on the internal network:




If the priority on route ID 1 were changed from 5 to 20, what would happen to traffic matching that user's session?

  1. The session would remain in the session table, and its traffic would still egress from port1.
  2. The session would remain in the session table, but its traffic would now egress from both port1 and port2.
  3. The session would remain in thesession table, and its traffic would start to egress from port2.
  4. The session would be deleted, so the client would need to start a new session.

Answer(s): A


Reference:

http://kb.fortinet.com/kb/documentLink.do?externalID=FD40943



Which of the following statements are correct regardingapplication layer test commands? (Choose two.)

  1. They are used to filter real-time debugs.
  2. They display real-time application debugs.
  3. Some of them display statistics and configuration information about a feature or process.
  4. Some of them can beused to restart an application.

Answer(s): C,D

Explanation:

Application layer test commands don't display info in real time, but they do show statistics and configuration info about a feature or process. You can also use some of these commands to restart a process or execute a change in its operation.



Examine the output from the 'diagnose debug authd fsso list' command; then answer the question below.

# diagnose debug authd fsso list--FSSO logons-IP: 192.168.3.1 User: STUDENT Groups: TRAININGAD/USERS Workstation: INTERNAL2. TRAINING. LAB The IP address 192.168.3.1 is NOT the one used by the workstation INTERNAL2. TRAINING.
LAB.

What should the administrator check?

  1. The IP address recorded in the logon event for the user STUDENT.
  2. The DNS name resolution for the workstation name INTERNAL2. TRAINING. LA
  3. The source IP address of the traffic arriving to the FortiGate from the workstation INTERNAL2. TRAINING. LAB.
  4. The reserve DNS lookup forthe IP address 192.168.3.1.

Answer(s): C



Examine the output of the `get router info ospf interface' command shown in the exhibit; then answer the question below.



Which statements are true regarding the above output? (Choose two.)

  1. Theport4 interface is connected to the OSPF backbone area.
  2. The local FortiGate has been elected as the OSPF backup designated router.
  3. There are at least 5 OSPF routers connected to the port4 network.
  4. Two OSPF routers are down in the port4 network.

Answer(s): A,C

Explanation:

on BROADCAST network there are 4 neighbors, among which 1*DR +1*BDR. So our FG has 4 neighbors, but create adjacency only with 2 (with DR and BDR). 2 neighbors DRother (not down).



Page 7 of 26



Post your Comments and Discuss Fortinet NSE7_EFW-6.4 exam with other Community members:

Jonathan commented on June 23, 2022
Thank you brain-dumps team. Your exam dump helped me pass the exam.
UNITED STATES
upvote