Cisco®
Oracle
CompTIA
Checkpoint
ISC
EC-Council
EXIN
Fortinet
ITIL®
Juniper
Microsoft
VMware
Avaya
SAP
Google
Salesforce
Amazon
Palo Alto Networks
ISC2
Splunk®
All Vendors
  2. Home
  3. Exams
  4. Fortinet
  5. NSE7_SDW-6.4

Free Fortinet NSE7_SDW-6.4 Exam Braindumps (page: 8)

Page 4 of 21
PDF with 81 Questions

What are two roles that SD-WAN orchestrator plays when it works with FortiManager? (Choose two )

  1. It configures and monitors SD-WAN networks on FortiGate devices that are managed by FortiManager.
  2. It acts as a standalone device to assist FortiManager to manage SD-WAN interfaces on the managed
    FortiGate devices.
  3. It acts as a hub FortiGate with an SD-WAN interface enabled and managed along with other FortiGate devices by FortiManager.
  4. It acts as an application that is released and signed by Fortinet to run as a part of management extensions on FortiManager.

Answer(s): A,D

Explanation:

SD-WAN 6.4 Guide Page 158.
https://docs2.fortinet.com/document/fortimanager/6.4.0/sd-wan-orchestrator-6-4-0- administration-guide/91581/introduction



Refer to the exhibit.



Which two statements about the status of the VPN tunnel are true? <Choose two )

  1. There are separate virtual interfaces for each dial-up client.
  2. VPN static routes are prevented from populating the FortiGate routing table.
  3. FortiGate created a single IPsec virtual interface that is shared by all clients.
  4. 100.64.3.1 is one of the remote IP address that comes through index interface 1.

Answer(s): C,D

Explanation:

If net-device is disabled, FortiGate creates a single IPSEC virtual interface that is shared by all IPSEC clients connecting to the same dialup VPN. In this case, the tunnel-search setting determines how FortiGate learns the network behind each remote client.



Refer to exhibits.





Exhibit A shows the SD-WAN rules and exhibit B shows the traffic logs. The SD-WAN traffic logs reflect how FortiGate processed traffic.

Which two statements about how the configured SD-WAN rules are processing traffic are true? (Choose two.)

  1. The implicit rule overrides all other rules because parameters widely cover sources and destinations.
  2. SD-WAN rules are evaluated in the same way as firewall policies: from top to bottom.
  3. The All_Access_Rules rule load balances Vimeo application traffic among SD-WAN member interfaces.
  4. The initial session of an application goes through a learning phase in order to apply the correct rule.

Answer(s): B,D



Refer to the exhibit.



What must you configure to enable ADVPN?

  1. On the hub VPN, only the device needs additional phase one sett
  2. ADVPN should only be enabled on unmanaged FortiGate devices.
  3. Each VPN device has a unique pre-shared key configured separately on phase one
  4. The protected subnets should be set to address object to all (0.0 .0. 0/0).

Answer(s): D

Explanation:

SD-WAN 6.4.5 Study Guide. pg 210



Viewing page 8 of 21
Viewing questions 29 - 32 out of 81 questions



Post your Comments and Discuss Fortinet NSE7_SDW-6.4 exam prep with other Community members:

NSE7_SDW-6.4 Exam Discussions & Posts