Updated FCSS_EFW_AD-7.4 Dumps (V9.02) Help You Pass the FCSS – Enterprise Firewall 7.4 Administrator Exam with Confidence – Read FCSS_EFW_AD-7.4 Free Dumps (Part 1, Q1-Q40)

1. An administrator must ensure that users cannot access sites containing malware and spyware, while also protecting them from phishing attempts.

What is the most resource-efficient method to block access to these sites?

2. What global configuration setting changes the behavior for content-inspected traffic while FortiGate is in system conserve mode?

3. Examine the following traffic log; then answer the question below.

date-20xx-02-01 time=19:52:01 devname=masterdevice_id="xxxxxxx" log_id=0100020007 type=event subtype=system pri critical vd=root service=kemel status=failure msg="NAT port is exhausted."

What does the log mean?

4. Refer to the exhibit, which contains partial output from an IKE real-time debug.

The administrator does not have access to the remote gateway.

Based on the debug output, which configuration change can the administrator make to the local gateway to resolve the phase 1 negotiation error?

5. Refer to the exhibit, which shows a partial web filter profile configuration.

Which action will FortiGate take if a user attempts to access www.dropbox.com, which is categorized as File Sharing and Storage?

6. Refer to the exhibit, which shows partial outputs from two routing debug commands.

Why is the port2 default route not in the second command output?

7. How does FortiManager handle FortiGuard requests from FortiGate devices, when it is configured as a local FDS?

8. An administrator has configured a dial-up IPsec VPN with one phase 2, extended authentication (XAuth) and IKE mode configuration.

The administrator has also enabled the IKE real time debug:

diagnose debug application ike-1

diagnose debug enable

In which order is each step and phase displayed in the debug output each time a new dial-up user is connecting to the VPN?

9. View the exhibit, which contains the partial output of a diagnose command, and then answer the question below.

Based on the output, which of the following statements is correct?

10. Which statement about the designated router (DR) and backup designated router (BDR) in an OSPF multi-access network is true?

11. Which two statements about application layer test commands are true? (Choose two.)

12. Refer to the exhibit, which shows the output of a diagnose command.

What can you conclude from the output shown in the exhibit? (Choose two.)

13. When investigating FortiGuard connectivity issues, which action is a valid troubleshooting step?

14. In which two states is a given session categorized as ephemeral? (Choose two.)

15. Refer to the exhibit, wh ch shows a command out

t of an IKE real-time debug.

Why did the tunnel not come up?

16. Which statement about administrative domains (ADOMs) on FortiManager is true?

17. Refer to the exhibits.

The exhibits show a network diagram, the output from the command config system ha, and a firewall policy.

What source MAC address does the web server detect when a user accesses it?

18. Which two statements about the Security Fabric are true? (Choose two.)

19. Examine the output from the 'diagnose debug authd fsso list' command; then answer the question below.

# diagnose debug authd fsso list--FSSO logons-IP: 192.168.3.1 User: STUDENT Groups:TRAININGAD/USERS Workstation: INTERNAL2. TRAINING. LAB The IP address 192.168.3.1 is NOT the one used by the workstation INTERNAL2. TRAINING. LAB.

What should the administrator check?

20. Four FortiGate devices configured for OSPF connected to the same broadcast domain. The first unit is elected as the designated router.

The second unit is elected as the backup designated router.

Under normal operation, how many OSPF full adjacencies are formed to each of the other two units?

21. An administrator has enabled HA session synchronization in a HA cluster with two members.

Which flag is added to a primary unit’s session to indicate that it has been synchronized to the secondary unit?

22. Which two tasks are automated using the Install Wizard on FortiManager? (Choose two.)

23. Refer to the exhibit, which contains a session table entry.

Which statement about FortiGate inspection of this session is true?

24. An LDAP user cannot authenticate against a FortiGate device.

Examine the real time debug output shown in the exhibit when the user attempted the authentication; then answer the question below.

Based on the output in the exhibit, what can cause this authentication problem?

25. Refer to the exhibit, which contains the output of a web filtering diagnose command.

Which statement explains why the cache statistics are all zeros?

26. Refer to the exhibit, which contains partial output from an IKE real-time debug.

Based on the debug output, which phase 1 setting is enabled in the configuration of this VPN?

27. An administrator wants to capture ESP traffic between two FortiGates using the built-in sniffer. If the administrator knows that there is no NAT device located between both FortiGates,

What command should the administrator execute?

28. What are two impacts on applications if adjusting the TCP Maximum Segment Size (MSS) on FortiGate? (Choose two.)

29. Which of the following statements is true regarding a FortiGate configured as an explicit web proxy?

30. Which statement about memory conserve mode is true?

31. Examine the partial output from the IKE real time debug shown in the exhibit; then answer the question below.

Why didn’t the tunnel come up?

32. When investigating FortiGuard connectivity issues, which of the following is a valid troubleshooting step?

33. Refer to the exhibit, which shows the output of a diagnose command

What can you conclude from the RTT value?

34. Examine the following routing table and BGP configuration; then answer the question below.

The BGP connection is up, but the local peer is NOT advertising the prefix 192.168.1.0/24.

Which configuration change will make the local peer advertise this prefix?

35. What configuration changes can reduce the memory utilization in a FortiGate? (Choose two.)

36. Refer to the exhibit, which shows the output of a web filtering diagnose command.

Which configuration change would result in non-zero results in the cache statistics section?

37. Refer to the exhibit, which contains a partial routing table.

Assuming all the appropriate firewall policies are configured, which two pings will FortiGate route? (Choose two.)

38. Which three conditions are required for two FortiGate devices to form an OSP adjacency? (Choose three.)

39. Refer to the exhibit, which shows partial outputs from two routing debug commands.

Which change must an administrator make on FortiGate to route web traffic from internal users to the internet, using ECMP?

40. Examine the partial output from two web filter debug commands; then answer the question below:

Based on the above outputs, which is the FortiGuard web filter category for the web site www.fgt99.com?