Podcast
Questions and Answers
Which tool can be used to check how the traffic is flowing and that FortiGate is not dropping packets?
Which tool can be used to check how the traffic is flowing and that FortiGate is not dropping packets?
What is the purpose of using Level 3 or Level 6 in the built-in sniffer?
What is the purpose of using Level 3 or Level 6 in the built-in sniffer?
How can you stop the built-in sniffer?
How can you stop the built-in sniffer?
What does it mean if there were dropped packets during the sniffer?
What does it mean if there were dropped packets during the sniffer?
Signup and view all the answers
What does the built-in sniffer show when enabled?
What does the built-in sniffer show when enabled?
Signup and view all the answers
What is another name for the debug flow tool?
What is another name for the debug flow tool?
Signup and view all the answers
What does the debug flow tool show?
What does the debug flow tool show?
Signup and view all the answers
What command is used to enable the display of function names in the debug flow tool?
What command is used to enable the display of function names in the debug flow tool?
Signup and view all the answers
What command is used to start the trace in the debug flow tool?
What command is used to start the trace in the debug flow tool?
Signup and view all the answers
What command is used to stop the trace in the debug flow tool?
What command is used to stop the trace in the debug flow tool?
Signup and view all the answers
Which mode allows you to configure application signatures, categories, groups, and FortiGuard web filter categories directly on the firewall policy?
Which mode allows you to configure application signatures, categories, groups, and FortiGuard web filter categories directly on the firewall policy?
Signup and view all the answers
In NGFW policy mode, what type of traffic can the FortiGate kernel identify in the kernel?
In NGFW policy mode, what type of traffic can the FortiGate kernel identify in the kernel?
Signup and view all the answers
What happens when a session first comes in and the kernel is not aware of any Layer 7 information?
What happens when a session first comes in and the kernel is not aware of any Layer 7 information?
Signup and view all the answers
What happens when the IPS engine performs Layer 7 identification on a session?
What happens when the IPS engine performs Layer 7 identification on a session?
Signup and view all the answers
What does the dirty flag indicate in the session table?
What does the dirty flag indicate in the session table?
Signup and view all the answers
Which component of the FortiGate handles Layer 7 identification?
Which component of the FortiGate handles Layer 7 identification?
Signup and view all the answers
What does the NGFW policy mode session handling involve?
What does the NGFW policy mode session handling involve?
Signup and view all the answers
In NGFW policy mode, how are other security inspection features, such as antivirus and DLP, configured?
In NGFW policy mode, how are other security inspection features, such as antivirus and DLP, configured?
Signup and view all the answers
What does the may_dirty flag indicate when a session first comes in?
What does the may_dirty flag indicate when a session first comes in?
Signup and view all the answers
What does the FortiGate kernel use to search the NGFW policy table for a match?
What does the FortiGate kernel use to search the NGFW policy table for a match?
Signup and view all the answers