Which, three conditions are required for two FortiGate devices to form an OSPF adjacency? (Choose three.)
Answer(s): A,B,E
Option A is correct because the OSPF interface network types determine how the routers form adjacencies and exchange LSAs on a network segment. The network types must match for the routers to become neighbors.Option B is correct because the OSPF router IDs are used to identify each router in the OSPF domain and to establish adjacencies. The router IDs must be unique for the routers to become neighbors. Option E is correct because the authentication settings control how the routers authenticate each other before exchanging OSPF packets. The authentication settings must match for the routers to become neighbors.Option C is incorrect because the OSPF interface priority settings are used to elect the designated router (DR) and the backup designated router (BDR) on a broadcast or non-broadcast multi-access network. The priority settings do not have to be unique for the routers to become neighbors, but they affect the DR/BDR election process.Option D is incorrect because the OSPF link costs are used to calculate the shortest path to a destination network based on the bandwidth of the links. The link costs do not have to match for the routers to become neighbors, but they affect the routing decisions.
=1: OSPF network types2: OSPF router ID3: OSPF authentication4: OSPF interface priority5: OSPF link cost
Refer to the exhibit, which shows a network diagram.Which IPsec phase 2 configuration should you impalement so that only one remote site is connected at any time?
Answer(s): C
To ensure that only one remote site is connected at any given time in an IPsec VPN scenario, you should use route-overlap with the option to either use-new or use-old. This setting dictates which routes are preferred and how overlaps in routes are handled, allowing for one connection to take precedence over the other (C).
FortiOS Handbook - IPsec VPN
Exhibit.Refer to the exhibit, which contains an ADVPN network diagram and a partial BGP con figuration Which two parameters Should you configure in config neighbor range? (Choose two.)
Answer(s): C,D
In the ADVPN configuration for BGP, you should specify the prefix that the neighbors can advertise. Option A is correct as you would configure the BGP network prefix that should be advertised to the neighbors, which matches the BGP network in the diagram. Option C is also correct since you should reference the neighbor group configured for the ADVPN setup within the BGP configuration.
You want to configure faster failure detection for BGP Which parameter should you enable on both connected FortiGate devices?
Answer(s): B
BFD (Bidirectional Forwarding Detection) is a protocol that provides fast failure detection for BGP by sending periodic messages to verify the connectivity between two peers. BFD can be enabled on both connected FortiGate devices by using the command set bfd enable under the BGP configuration.
= Technical Tip : FortiGate BFD implementation and examples ..., Configure BGP | FortiGate / FortiOS 7.0.2 - Fortinet Documentation
Post your Comments and Discuss Fortinet NSE7_EFW-7.2 exam with other Community members:
Sobhash Commented on April 03, 2024 I was required by my company to pass this exam. I studied for 2 months and sat for the exam but failed. So I decided to use this study exam pacakge with practice questions. They questions turned out to be very relavant and accurate. The explanations and references are a big help. I passed the exam last week. UNITED KINGDOM
Our website is free, but we have to fight against bots and content theft. We're sorry for the inconvenience caused by these security measures. You can access the rest of the NSE7_EFW-7.2 content, but please register or login to continue.