An administrator has configured outgoing interface any in a firewall policy. Which statement is true about the policy list view?
Question 12
Refer to the exhibit. Given the interfaces shown in the exhibit, which two statements are true? (Choose two.)
Question 13
A network administrator wants to set up redundant IPsec VPN tunnels on FortiGate by using two IPsec VPN tunnels and static routes. - All traffic must be routed through the primary tunnel when both tunnels are up - The secondary tunnel must be used only if the primary tunnel goes down In addition, FortiGate should be able to detect a dead tunnel to speed up tunnel failover Which two key configuration changes are needed in FortiGate to meet the design requirements? (Choose two.)
Question 14
Refer to the exhibit. The exhibit displays the output of the CLI command: diagnose sys ha dump-by vcluster. The override setting is enable for the FortiGate with SN FGVM010000064692. Which two statements are true? (Choose two.)
Question 15
Refer to the exhibits. Exhibit A shows system performance output. Exhibit B shows s FortiGate configured with the default configuration of high memory usage thresholds. Based on the system performance output, which two statements are correct? (Choose two.)
Question 16
An administrator is configuring an IPsec VPN between site A and site B. The Remote Gateway setting in both sites has been configured as Static IP Address. For site A, the local quick mode selector is 192.168.1.0/24 and the remote quick mode selector is 192.168.2.0/24. Which subnet must the administrator configure for the local quick mode selector for site B?
Question 17
Refer to the exhibits. The SSL VPN connection fails when a user attempts to connect to it. What should the user do to successfully connect to SSL VPN?
Question 18
Which two statements about SSL VPN between two FortiGate devices are true? (Choose two.)
Question 19
Refer to the exhibit.The Root and To_Internet VDOMs are configured in NAT mode. The DMZ and Local VDOMs are configured in transparent mode. The Root VDOM is the management VDOM. The To_Internet VDOM allows LAN users to access the internet. The To_Internet VDOM is the only VDOM with internet access and is directly connected to ISP modem. With this configuration, which statement is true?
Question 20
Refer to the exhibits. An administrator creates a new address object on the root FortiGate (Local-FortiGate) in the security fabric. After synchronization, this object is not available on the downstream FortiGate (ISFW). What must the administrator do to synchronize the address object?
