NSE4_FGT-6.2 無料問題集「Fortinet NSE 4 - FortiOS 6.2」

（A）Enable disk logging.

（B）Enable Event Logging.

（C）Enable Log Allowed Traffic on the Full Access firewall policy.

（D）Enable a web filter security profile on the Full Access firewall policy.

（A）Source IP is translated to the outgoing interface IP.

（B）This is known as many-to-one NAT.

（C）Port address translation is not used.

（D）Connections are tracked using source port and source MAC address.

（A）SSL VPN settings do not have customizable timers.

（B）Prevent SSL VPN users from being logged out because of high network latency.

（C）Disconnect idle SSL VPN users when a firewall policy authentication timeout occurs.

（D）Allow to mitigate DoS attacks from partial HTTP requests.

（A）Define the phase 2 parameters.

（B）Define the phase 1 parameters, without enabling IPsec interface mode

（C）Set the phase 2 encapsulation method to transport mode

（D）Define a route to the remote network over the IPsec tunnel.

（E）Define at least one firewall policy, with the action set to IPsec.

（A）Configure the Service field as Internet Service objects for Twitter.

（B）Configure the Action field as Learn and select Twitter.

（C）Configure the Source field as Internet Service objects for Twitter.

（D）Configure the Destination field as Internet Service objects for Twitter.

（A）FortiGate will use the port1 route as the primary candidate.

（B）FortiGate will only actuate the port1 route in the routing table

（C）FortiGate will route twice as much traffic to the port2 route

（D）FortiGate will load balance all traffic across both routes.

（A）It permits inline traffic inspection and firewalling without changing the IP scheme of the network.

（B）All interfaces of the transparent mode FortiGate device must be on different IP subnets.

（C）The transparent FortiGate is visible to network hosts in an IP traceroute.

（D）FortiGate acts as transparent bridge and forwards traffic at Layer 2.

（E）Ethernet packets are forwarded based on destination MAC addresses, not IP addresses.

（A）FortiGate regenerates the algorithm based on the login credentials and compares it to the algorithm stored on the LDAP server.

（B）FortiGate queries the LDAP server for credentials.

（C）FortiGate sends the user-entered credentials to the LDAP server for authentication.

（D）FortiGate queries its own database for credentials.

（A）Downstream FortiGate

（B）FortiAnalyzer

（C）Root FortiGate

（D）FortiManager

（A）The user must log in again to authenticate.

（B）The user will be denied access to resources without authentication.

（C）The user will not be prompted for authentication.

（D）User authentication happens at an interface level.