Online NSE7_OTS-7.2 Practice TestMore Fortinet Products >

Free Fortinet NSE7_OTS-7.2 Exam Dumps Questions

Fortinet NSE7_OTS-7.2: Fortinet NSE 7 - OT Security 7.2

- Get instant access to NSE7_OTS-7.2 practice exam questions

- Get ready to pass the Fortinet NSE 7 - OT Security 7.2 exam right now using our Fortinet NSE7_OTS-7.2 exam package, which includes Fortinet NSE7_OTS-7.2 practice test plus an Fortinet NSE7_OTS-7.2 Exam Simulator.

- The best online NSE7_OTS-7.2 exam study material and preparation tool is here.

4.5

(7740 ratings)

Question 1

As an OT network administrator, you are managing three FortiGate devices that each protect different levels on the Purdue model. To increase traffic visibility, you are required to implement additional security measures to detect exploits that affect PLCs.
Which security sensor must implement to detect these types of industrial exploits?

A. Intrusion prevention system (IPS)

B. Deep packet inspection (DPI)

C. Antivirus inspection

D. Application control

Correct Answer:B

Question 2

What are two critical tasks the OT network auditors must perform during OT network risk assessment and management? (Choose two.)

A. Planning a threat hunting strategy

B. Implementing strategies to automatically bring PLCs offline

C. Creating disaster recovery plans to switch operations to a backup plant

D. Evaluating what can go wrong before it happens

Correct Answer:BC

Question 3

An OT administrator configured and ran a default application risk and control report in FortiAnalyzer to learn more about the key application crossing the network. However, the report output is empty despite the fact that some related real-time and historical logs are visible in the FortiAnalyzer.
What are two possible reasons why the report output was empty? (Choose two.)

A. The administrator selected the wrong logs to be indexed in FortiAnalyzer.

B. The administrator selected the wrong time period for the report.

C. The administrator selected the wrong devices in the Devices section.

D. The administrator selected the wrong hcache table for the report.

Correct Answer:BC
https://fortinetweb.s3.amazonaws.com/docs.fortinet.com/v2/attachments/32cb817d-a307- 11eb-b70b-00505692583a/FortiAnalyzer-7.0.0-Administration_Guide.pdf

Question 4

An OT architect has deployed a Layer 2 switch in the OT network at Level 1 the Purdue model-process control. The purpose of the Layer 2 switch is to segment traffic between PLC1 and PLC2 with two VLANs. All the traffic between PLC1 and PLC2 must first flow through the Layer 2 switch and then through the FortiGate device in the Level 2 supervisory control network.
What statement about the traffic between PLC1 and PLC2 is true?

A. The Layer 2 switch rewrites VLAN tags before sending traffic to the FortiGate device.

B. The Layer 2 switches routes any traffic to the FortiGate device through an Ethernet link.

C. PLC1 and PLC2 traffic must flow through the Layer-2 switch trunk link to the FortiGate device.

D. In order to communicate, PLC1 must be in the same VLAN as PLC2.

Correct Answer:C
The statement that is true about the traffic between PLC1 and PLC2 is that PLC1 and PLC2 traffic must flow through the Layer-2 switch trunk link to the FortiGate device.

Question 5

An OT network architect must deploy a solution to protect fuel pumps in an industrial remote network. All the fuel pumps must be closely monitored from the corporate network for any temperature fluctuations.
How can the OT network architect achieve this goal?

A. Configure a fuel server on the remote network, and deploy a FortiSIEM with a single pattern temperature security rule on the corporate network.

B. Configure a fuel server on the corporate network, and deploy a FortiSIEM with a single pattern temperature performance rule on the remote network.

C. Configure a fuel server on the remote network, and deploy a FortiSIEM with a single pattern temperature performance rule on the corporate network.

D. Configure both fuel server and FortiSIEM with a single-pattern temperature performance rule on the corporate network.

Correct Answer:C
This way, FortiSIEM can discover and monitor everything attached to the remote network and provide security visibility to the corporate network

Question 6

Which three criteria can a FortiGate device use to look for a matching firewall policy to process traffic? (Choose three.)

A. Services defined in the firewall policy.

B. Source defined as internet services in the firewall policy

C. Lowest to highest policy ID number

D. Destination defined as internet services in the firewall policy

E. Highest to lowest priority defined in the firewall policy

Correct Answer:ADE
The three criteria that a FortiGate device can use to look for a matching firewall policy to process traffic are:
* A. Services defined in the firewall policy - FortiGate devices can match firewall policies based on the services defined in the policy, such as HTTP, FTP, or DNS.
* D. Destination defined as internet services in the firewall policy - FortiGate devices can also match firewall policies based on the destination of the traffic, including destination IP address, interface, or internet services.
* E. Highest to lowest priority defined in the firewall policy - FortiGate devices can prioritize firewall policies based on the priority defined in the policy. The device will process traffic against the policy with the highest priority first and move down the list until it finds a matching policy.
Reference:
Fortinet NSE 7 - Enterprise Firewall 6.4 Study Guide, Chapter 4: Policy Implementation, page 4-18.

START NSE7_OTS-7.2 EXAM