Question 7

- (Exam Topic 1)
Refer to the exhibit showing a debug flow output.
NSE4_FGT-7.0 dumps exhibit
Which two statements about the debug flow output are correct? (Choose two.)

Correct Answer:AC
Reference: https://docs.fortinet.com/document/fortigate/6.2.3/cookbook/54688/debugging-the-packet-flow

Question 8

- (Exam Topic 1)
Which three options are the remote log storage options you can configure on FortiGate? (Choose three.)

Correct Answer:BCE
Reference:
https://docs.fortinet.com/document/fortigate/6.0.0/handbook/265052/logging-and-reporting-overview

Question 9

- (Exam Topic 2)
What is the limitation of using a URL list and application control on the same firewall policy, in NGFW policy-based mode?

Correct Answer:B

Question 10

- (Exam Topic 2)
Examine this FortiGate configuration:
NSE4_FGT-7.0 dumps exhibit
Examine the output of the following debug command:
NSE4_FGT-7.0 dumps exhibit
Based on the diagnostic outputs above, how is the FortiGate handling the traffic for new sessions that require inspection?

Correct Answer:C

Question 11

- (Exam Topic 1)
Refer to the exhibit.
NSE4_FGT-7.0 dumps exhibit
An administrator has configured a performance SLA on FortiGate, which failed to generate any traffic. Why is FortiGate not sending probes to 4.2.2.2 and 4.2.2.1 servers? (Choose two.)

Correct Answer:BD

Question 12

- (Exam Topic 1)
Which two settings can be separately configured per VDOM on a FortiGate device? (Choose two.)

Correct Answer:CD
C: "Operating mode is per-VDOM setting. You can combine transparent mode VDOM's with NAT mode VDOMs on the same physical Fortigate.
D: "Inspection-mode selection has moved from VDOM to firewall policy, and the default inspection-mode is flow, so NGFW Mode can be changed from Profile-base (Default) to Policy-base directly in System > Settings from the VDOM" Page 125 of FortiGate_Infrastructure_6.4_Study_Guide

START NSE4_FGT-7.0 EXAM