Questions and Answers
What is a necessary condition for two FortiGate devices to form an OSPF adjacency?
OSPF router IDs are unique
Which of the following configuration changes can resolve a phase 1 negotiation error in IKE real-time debug?
Add AES128-SHA128 to the list of encryption algorithms
What is the purpose of the 'set webfilter-cache enable' command in FortiGate configuration?
To enable cache statistics
Why is it necessary to have unique OSPF router IDs for OSPF adjacency?
Signup and view all the answers
What is the result of adding AES256-SHA256 to the list of encryption algorithms in phase 1 proposal configuration?
Signup and view all the answers
What is the purpose of the 'set server-type rating' command in FortiGate configuration?
Signup and view all the answers
Study Notes
OSPF Adjacency Requirements
- For two FortiGate devices to form an OSPF adjacency, the following three conditions are required:
- OSPF interface network types must match
- OSPF router IDs must be unique
- One more required condition (not specified)
IKE Phase 1 Negotiation
- To resolve a phase 1 negotiation error, the administrator can make the following configuration change to the local gateway:
- Add AES128-SHA128 to the list of encryption algorithms in the phase 1 proposal configuration
- Note: This is based on the real-time debug output and the assumption that the administrator does not have access to the remote gateway
Web Filtering Configuration
- To result in non-zero cache statistics, the following configuration change can be made:
- Enable web filtering cache by setting
webfilter-cache enableunderconfig system fortiguard
- Enable web filtering cache by setting
Studying That Suits You
Use AI to generate personalized quizzes and flashcards to suit your learning preferences.
