1. Which configuration objects can be selected for the Source field of a firewall policy? (Choose two.)

2. By default, when logging to disk, when does FortiGate delete logs?

3. Which of the following conditions are required for establishing an IP Sec VPN between two FortiGate devices? (Choose two)

4. Based on this output, which statements are correct? (Choose two.)

5. Which of the following statements about NTLM authentication are correct? (Choose two.)

6. Refer to the exhibit.

The exhibits show the firewall policies and the objects used in the firewall policies.

The administrator is using the Policy Lookup feature and has entered the search criteria shown in the exhibit.

Which of the following will be highlighted based on the input criteria?

7. An administrator is attempting to allow access to https://fortinet. com through a firewall policy that is configured with a webfilter and an SSL inspection profile configured for deep inspection which of the following are possible actions to eliminate the certificate error generated by deep inspection? (Choose Two)

8. An administrator has configured a dialup IPsec VPN with XAuth.

Which statement best describes what occurs during this scenario?

9. What are the expected actions if traffic matches this IPS sensor? (Choose two)

10. An administrator has configured the following settings

config system settings

set ses-denied-traffic enable end

config system global

set block-session-timer 30 end

What does the configuration do? (Choose two)

11. How does FortiGate verify the login credentials of a remote LDAP user?

12. Which users and user groups are allowed access to the network through captive portal?

13. Which of the following statements about policy-based IPsec tunnels are true? (Choose two. )

14. An administrator wants to block HTTP uploads Examine the exhibit, which contains the proxy address created for that purpose.

Where must the proxy address be used?

15. Which one of the following processes is involved in updating IPS from FortiGuard?

16. An administrator wants to create a policy-based IPsec VPN tunnel between two FortiGate devices which configuration steps must be performed on both devices to support this scenario? (Choose three)

17. An administrator wants to configure a FortiGate as a DNS server. FotiGate must use a DNS database first, and then relay all irresolvable queries to an external DNS server.

Which of the following DNS methods must you use?

18. Why is the administrator getting the error shown in the exhibit?

19. If the issuer and Subject values are the same in a digital certificate, which type of entity was the certificate issued to?

20. Which statements about a One-to-One IP pool are true? (Choose two. )

21. Examine the two static routes shown in the exhibit, then answer the following question

Which of the following is the expected FortiGate behavior regarding these two routes to the same destination?

22. Examine the exhibit, which shows the partial output of an IKE real-time debug.

Which of the following statement about the output is true?

23. How can you block or allow to Twitter using a firewall policy?

24. When browsing to an internal web server using a web-mode SSL VPN bookmark, which IP address is used as the source of the HTTP request?

25. Which of the following services can be inspected by the DLP profile? (Choose three.)

26. A company needs to provide SSL VPN access to two user groups. The company also needs to display different welcome messages on the SSL VPN login screen for both user groups.

What is required in the SSL VPN configuration to meet these requirements?

27. The FSSO Collector Agent set to advanced access mode for the Windows Active Directory uses which of the following?

28. NGFW mode allows policy-based configuration for most inspection rules. Which security profile's configuration does not change when you enable policy-based inspection?

29. Which of the following statements are true when using WPAD with the DHCP discovery method? (Choose two.)

30. What is the limitation of using a URL list and application control on the same firewall policy, in NGFW policy-based mode?

31. View the exhibit:

Based on the configuration shown in the exhibit, what statements about application control behavior are true? (Choose two)

32. An administrator is running the following sniffer command ：

diagnose sniffer packet any"host 10.0.2.10" 3

What information will be included in the sniffer output? (Choose three.)

33. An administrator has configured two VLAN interfaces ：

A DHCP server is connected to the VLAN 10 interface ， A DHCP Client is connected to the VLAN5 interface. However ， the DHCP client cannot get a dynamic IP address from the DHCP server.

What is the cause of the problem?

34. An administrator observes that the port1 interface cannot be configured with an IP address.

What can be the reasons for that? (Choose three.)

35. Examine the IPS sensor and DoS policy configuration shown in the exhibit, then answer the question below.

When detecting attacks, which anomaly, signature, or filter wil FortiGate evaluate first?

36. When using SD-WAN, how do you configure the next-hop gateway address for a member interface so that FortiGate can forward Internet traffic?

37. Examine the IPS sensor configuration shown in the exhibit, and then answer the question below.

An administrator has configured the WinDOS_SERVERS IPS sensor in an attempt to determine whether the influx of HTTPS traffic is an attack attempt or not. After applying the IPS sensor, FortiGate is still not generating any IPS logs for the HTTPS traffic.

What is a possible reason for this?

38. A FortiGate is operating in NAT mode and configured with two virtual LAN (VLAN) sub interfaces added to the physical interface. Which statements about the VLAN sub interfaces can have the same VLAN ID, only if they have IP addresses in different subnets.

39. How does FortiGate select the central SNAT policy that is applied to a TCP session?

40. Which of the following SD-WAN-load balancing method use interface weight value to distribute traffic?

41. View the exhibit.

Which of the following statements are correct? (Choose two.)

42. What information is flushed when the chunk-size value is changed in the config dip settings?

43. Which is the correct description of a hash result as it relates to digital certificates?

44. View the exhibit.

What does this raw log indicate? (Choose two.)

45. An administrator needs to strengthen the security for SSL VPN access.

Which of the following statements are best practices to do so? (Choose three)