Spring Special Limited Time 70% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code = getmirror

Home
Fortinet
NSE 7 Network Security Architect
NSE7_EFW-7.0
Fortinet NSE 7 - Enterprise Firewall 7.0 Questions and Answers

Pass the Fortinet NSE 7 Network Security Architect NSE7_EFW-7.0 Questions and answers with ExamsMirror

Practice at least 50% of the questions to maximize your chances of passing.

Exam NSE7_EFW-7.0 Premium Access

View all detail and faqs for the NSE7_EFW-7.0 exam

Go to Exam

779 Students Passed

85% Average Score

90% Same Questions

Viewing page 2 out of 5 pages

Viewing questions 11-20 out of questions

Questions # 11:

Which of the following statements are correct regarding application layer test commands? (Choose two.)

Options:

They are used to filter real-time debugs.

They display real-time application debugs.

Some of them display statistics and configuration information about a feature or process.

Some of them can be used to restart an application.

Answer

C, D

Explanation

Application layer test commands don’t display info in real time, but they do show statistics and configuration info about a feature or process. You can also use some of these commands to restart a process or execute a change in its operation.

Questions # 12:

When using the SSL certificate inspection method for HTTPS traffic, how does FortiGate filter web requests when the browser client does not provide the server name indication (SNI) extension?

Options:

FortiGate uses CN information from the Subject field in the server’s certificate.

FortiGate switches to the full SSL inspection method to decrypt the data.

FortiGate blocks the request without any further inspection.

FortiGate uses the requested URL from the user’s web browser.

Answer

Questions # 13:

What events are recorded in the crashlogs of a FortiGate device? (Choose two.)

Options:

A process crash.

Configuration changes.

Changes in the status of any of the FortiGuard licenses.

System entering to and leaving from the proxy conserve mode.

Answer

A, D

Explanation

diagnose debug crashlog read

275: 2014-08-05 13:03:53 proxy=acceptor service=imap session fail mode=activated276: 2014-08-05 13:03:53 proxy=acceptor service=ftp session fail mode=activated277: 2014-08-05 13:03:53 proxy=acceptor service=nntp session fail mode=activated278: 2014-08-06 11:05:47 service=kernel conserve=on free=”45034 pages” red=”45874 pages” msg=”Kernel279: 2014-08-06 11:05:47 enters conserve mode”280: 2014-08-06 13:07:16 service=kernel conserve=exit free=”86704 pages” green=”68811 pages”281: 2014-08-06 13:07:16 msg=”Kernel leaves conserve mode”282: 2014-08-06 13:07:16 proxy=imd sysconserve=exited total=1008 free=349 marginenter=201283: 2014-08-06 13:07:16 marginexit=302

Questions # 14:

Which of the following conditions must be met for a static route to be active in the routing table? (Choose three.)

Options:

The next-hop IP address is up.

There is no other route, to the same destination, with a higher distance.

The link health monitor (if configured) is up.

The next-hop IP address belongs to one of the outgoing interface subnets.

The outgoing interface is up.

Answer

C, D, E

Explanation

A configured static route only goes to routing table from routing database when all the following are met :

The outgoing interface is up

There is no other matching route with a lower distance

The link health monitor (if configured) is successful

The next-hop IP address belongs to one of the outgoing interface subnets

Questions # 15:

Examine the following partial output from a sniffer command; then answer the question below.

Question # 15

What is the meaning of the packets dropped counter at the end of the sniffer?

Options:

Number of packets that didn’t match the sniffer filter.

Number of total packets dropped by the FortiGate.

Number of packets that matched the sniffer filter and were dropped by the FortiGate.

Number of packets that matched the sniffer filter but could not be captured by the sniffer.

Answer

Explanation

https://kb.fortinet.com/kb/documentLink.do?externalID=11655

Questions # 16:

Examine the output of the ‘get router info ospf interface’ command shown in the exhibit; then answer the question below.

Question # 16

Which statements are true regarding the above output? (Choose two.)

Options:

The port4 interface is connected to the OSPF backbone area.

The local FortiGate has been elected as the OSPF backup designated router.

There are at least 5 OSPF routers connected to the port4 network.

Two OSPF routers are down in the port4 network.

Answer

A, C

Explanation

on BROADCAST network there are 4 neighbors, among which 1*DR +1*BDR. So our FG has 4 neighbors, but create adjacency only with 2 (with DR and BDR). 2 neighbors DRother (not down).

Questions # 17:

Refer to the exhibit, which contains the output of the diagnose vpn tunnel list.

Which command will capture ESP traffic for the VPN named DialUp_0?