Podcast
Questions and Answers
Which tool can be used to check how the traffic is flowing and that FortiGate is not dropping packets?
Which tool can be used to check how the traffic is flowing and that FortiGate is not dropping packets?
- Built-in sniffer (correct)
- WireShark
- Debug flow
- Telnet/SSH
What is the purpose of using Level 3 or Level 6 in the built-in sniffer?
What is the purpose of using Level 3 or Level 6 in the built-in sniffer?
- To convert the output to Pcap format (correct)
- To display the function names
- To start and stop the trace
- To analyze the traffic flow
How can you stop the built-in sniffer?
How can you stop the built-in sniffer?
- Enable display of function names
- Send output to telnet/SSH
- Press Ctrl+C (correct)
- Specify the filter
What does it mean if there were dropped packets during the sniffer?
What does it mean if there were dropped packets during the sniffer?
What does the built-in sniffer show when enabled?
What does the built-in sniffer show when enabled?
What is another name for the debug flow tool?
What is another name for the debug flow tool?
What does the debug flow tool show?
What does the debug flow tool show?
What command is used to enable the display of function names in the debug flow tool?
What command is used to enable the display of function names in the debug flow tool?
What command is used to start the trace in the debug flow tool?
What command is used to start the trace in the debug flow tool?
What command is used to stop the trace in the debug flow tool?
What command is used to stop the trace in the debug flow tool?
Which mode allows you to configure application signatures, categories, groups, and FortiGuard web filter categories directly on the firewall policy?
Which mode allows you to configure application signatures, categories, groups, and FortiGuard web filter categories directly on the firewall policy?
In NGFW policy mode, what type of traffic can the FortiGate kernel identify in the kernel?
In NGFW policy mode, what type of traffic can the FortiGate kernel identify in the kernel?
What happens when a session first comes in and the kernel is not aware of any Layer 7 information?
What happens when a session first comes in and the kernel is not aware of any Layer 7 information?
What happens when the IPS engine performs Layer 7 identification on a session?
What happens when the IPS engine performs Layer 7 identification on a session?
What does the dirty flag indicate in the session table?
What does the dirty flag indicate in the session table?
Which component of the FortiGate handles Layer 7 identification?
Which component of the FortiGate handles Layer 7 identification?
What does the NGFW policy mode session handling involve?
What does the NGFW policy mode session handling involve?
In NGFW policy mode, how are other security inspection features, such as antivirus and DLP, configured?
In NGFW policy mode, how are other security inspection features, such as antivirus and DLP, configured?
What does the may_dirty flag indicate when a session first comes in?
What does the may_dirty flag indicate when a session first comes in?
What does the FortiGate kernel use to search the NGFW policy table for a match?
What does the FortiGate kernel use to search the NGFW policy table for a match?
Flashcards are hidden until you start studying
