CertsTopics Logo

Weekend Special 70% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code: save70

NSE 7 Network Security Architect NSE7_SDW-6.4 Book

Page: 2 / 3
Total 80 questions
Get NSE7_SDW-6.4 Full Access Download NSE7_SDW-6.4 PDF

Fortinet NSE 7 - SD-WAN 6.4.5 Questions and Answers

Question 5

Refer to exhibits

Exhibit A shows the system interface with the static routes and exhibit B shows the firewall policies on the managed FortiGate

Based on the FortiGate configuration shown in the exhibits, what are two issues you might encounter when creating an SD-WAN interface on port1 and port2? {Choose two )

Options:

A.

Member interfaces that are administratively down

B.

Member interface that have IP address of 0.0.0.0/0.0.0.0

C.

Member interfaces that are physical interfaces as well as VLAN aggregate, and iPsec interfaces

D.

Member interfaces that are referenced by any other configuration element

Question 6

When attempting to establish an IPsec tunnel to FortiGate, all remote users match the FIRST_VPN IPsec VPN. This includes remote users that want to connect to the SECOND_VPN IPsec VPN.

Which two configuration changes must you make on both IPsec VPNs so that remote users can connect to their intended IPsec VPN? (Choose two.)

Options:

A.

Configure different proposals.

B.

Configure a unique peer ID.

C.

Change the IKE mode to aggressive.

D.

Configure different Diffie Hellman groups.

Question 7

Refer to the exhibit.

Which statement about the command route-tag in the SD-WAN rule is true?

Options:

A.

It enables the SD-WAN rule to load balance and assign traffic with a route tag

B.

It tags each route and references the tag in the routing table.

C.

It uses route tags for a BGP community and assigns the SD-WAN rules with same tag.

D.

It ensures route tags match the SD-WAN rule based on the rule order

Question 8

Which diagnostic command can you use to show the SD-WAN rules interface information and state?

Options:

A.

diagnose sys virtual-wan-link neighbor.

B.

diagnose sys virtual—wan—link route-tag-list

C.

diagnose sys virtual—wan—link member.

D.

diagnose sys virtual-wan-link service

Page: 2 / 3
Total 80 questions
Get NSE7_SDW-6.4 Full Access Download NSE7_SDW-6.4 PDF