Fortinet.NSE4_FGT-6.2.v2020-01-26.q30
Exam Code:NSE4_FGT-6.2Exam Name:Fortinet NSE 4 - FortiOS 6.2Certification Provider:FortinetFree Question Number:30Version:v2020-01-26# of views:119# of Questions views:419
NEW QUESTION: 1
An administrator is attempting to allow access to through a firewall policy that
is configured with a web filter and an SSL inspection profile configured for deep inspection. Which
of the following are possible actions to eliminate the certificate error generated by deep
inspection? (Choose two.)
A.Configure fortinet.com access to bypass the IPS engine.B.Configure an SSL-inspection exemption for fortinet.com.C.Implement firewall authentication for all users that need access to fortinet.com.D.Manually install the FortiGate deep inspection certificate as a trusted CA.Answer: B,C
NEW QUESTION: 2What FortiGate configuration is required to actively prompt users for credentials?
NEW QUESTION: 3Which of the following statements about central NAT are true? (Choose two.)
NEW QUESTION: 4
An administrator has configured two VLAN interfaces:A DHCP server is connected to the VLAN10 interface. A DHCP client is connected to the VLAN5interface.However, the DHCP client cannot get a dynamic IP address from the DHCP server. What is thecause of the problem?
NEW QUESTION: 5Which of the following statements correctly describes FortiGates route lookup behavior whensearching for a suitable gateway? (Choose two)
A.Lookup is done on every packet, regardless of directionB.Lookup is done on the first packet from the session originatorC.Lookup is done on the last packet sent from the responderD.Lookup is done on the trust reply packet from the responderAnswer: B,C
You've reached the end of your free preview.
Want to read all 10 pages?
- Fall '19
- IP address, administrator
