NSE4_FGT-7.0 – Fortinet NSE 4 - FortiOS 7.0

Loading demo links...

Showing 1–3 of 10 questions

Question 1

Which two statements about IPsec authentication on FortiGate are correct? (Choose two.)

Select all that apply, then click Submit answer.

○
For a stronger authentication, you can also enable extended authentication (XAuth) to request the remote
peer to provide a username and password
○
FortiGate supports pre-shared key and signature as authentication methods.
○
Enabling XAuth results in a faster authentication because fewer packets are exchanged.
○
A certificate is not required on the remote peer when you set the signature as the authentication method.

Question 2

Examine this PAC file configuration.

Which of the following statements are true? (Choose two.)

Select all that apply, then click Submit answer.

○
Browsers can be configured to retrieve this PAC file from the FortiGate.
○
Any web request to the 172.25.120.0/24 subnet is allowed to bypass the proxy.
○
All requests not made to Fortinet.com or the 172.25.120.0/24 subnet, have to go through altproxy.corp.com: 8060.
○
Any web request fortinet.com is allowed to bypass the proxy.

Question 3

Which two statements about antivirus scanning mode are true? (Choose two.)

Select all that apply, then click Submit answer.

○
In proxy-based inspection mode, files bigger than the buffer size are scanned.
○
In flow-based inspection mode, files bigger than the buffer size are scanned.
○
In flow-based inspection mode, FortiGate buffers the file, but also simultaneously transmits it to the client.
○
In proxy-based inspection mode, antivirus scanning buffers the whole file for scanning, before sending it to the client.

← Prev 1 2 3 4 Next →

Page 1 of 4

Sale Ends In

2h 0m 0s