CompTIA
Checkpoint
ISC
HP
Dell
EC-Council
EXIN
Fortinet
ITIL®
Juniper
PMI
Microsoft
VMware
Avaya
Google
Salesforce
Amazon
Palo Alto Networks
Certiport
ISC2
All Vendors
  2. Home
  3. Exams
  4. Fortinet
  5. NSE7_EFW-7.0

Free NSE7_EFW-7.0 Exam Braindumps (page: 15)

Page 15 of 31
PDF with 163 Questions

View the following FortiGate configuration.



All traffic to the Internet currently egresses from port1. The exhibit shows partial session information for Internet traffic from a user on the internal network:



If the priority on route ID 1 were changed from 5 to 20, what would happen to traffic matching that
user’s session?

  1. The session would remain in the session table, and its traffic would still egress from port1.
  2. The session would remain in the session table, but its traffic would now egress from both port1 and port2.
  3. The session would remain in the session table, and its traffic would start to egress from port2.
  4. The session would be deleted, so the client would need to start a new session.

Answer(s): A

Explanation:

http://kb.fortinet.com/kb/documentLink.do?externalID=FD40943



View the exhibit, which contains the output of a diagnose command, and then answer the question below.



Which statements are true regarding the output in the exhibit? (Choose two.)

  1. FortiGate will probe 121.111.236.179 every fifteen minutes for a response.
  2. Servers with the D flag are considered to be down.
  3. Servers with a negative TZ value are experiencing a service outage.
  4. FortiGate used 209.222.147.3 as the initial server to validate its contract.

Answer(s): A,D

Explanation:

A – because flag is Failed so fortigate will check if server is available every 15 min D-state is I , contact to validate contract info



What does the dirty flag mean in a FortiGate session?

  1. Traffic has been blocked by the antivirus inspection.
  2. The next packet must be re-evaluated against the firewall policies.
  3. The session must be removed from the former primary unit after an HA failover.
  4. Traffic has been identified as from an application that is not allowed.

Answer(s): B

Explanation:

https://kb.fortinet.com/kb/viewContent.do?externalId=FD40119&sliceId=1



The CLI command set intelligent-mode <enable | disable> controls the IPS engine’s adaptive scanning behavior. Which of the following statements describes IPS adaptive scanning?

  1. Determines the optimal number of IPS engines required based on system load.
  2. Downloads signatures on demand from FDS based on scanning requirements.
  3. Determines when it is secure enough to stop scanning session traffic.
  4. Choose a matching algorithm based on available memory and the type of inspection being performed.

Answer(s): C

Explanation:

Configuring IPS intelligence
Starting with FortiOS 5.2, intelligent-mode is a new adaptive detection method. This command is enabled the default and it means that the IPS engine will perform adaptive scanning so that, for some traffic, the FortiGate can quickly finish scanning and offload the traffic to NPU or kernel. It is a balanced method which could cover all known exploits. When disabled, the IPS engine scans every single byte.
config ips global
set intelligent-mode {enable|disable} end



Page 15 of 31



Post your Comments and Discuss Fortinet NSE7_EFW-7.0 exam with other Community members:

Obekoo commented on June 21, 2023
I managed to pass my certification test with help from these exam dums.
FRANCE
upvote