Routing Changes without Source NAT (S-NAT)
20 Questions
2 Views

Choose a study mode

Play Quiz
Study Flashcards
Spaced Repetition
Chat to lesson

Podcast

Play an AI-generated podcast conversation about this lesson

Questions and Answers

Which command can be used to configure session route persistence at the interface level?

  • config system global set session-persistence
  • config system interface set snat-route-change (correct)
  • config system global set snat-route-change
  • config system interface set session-persistence
  • What is the default value for session route persistence at the interface level?

  • enable
  • config system global set snat-route-change
  • disable (correct)
  • config system interface set snat-route-change
  • What happens to sessions passing through an interface when session route persistence is enabled?

  • They continue to pass without being affected by routing changes (correct)
  • They are terminated
  • They are affected by routing changes
  • They are rerouted to a different interface
  • What is the default setting for the 'snat-route-change' option when S-NAT is applied?

    <p>disable</p> Signup and view all the answers

    What happens to sessions with S-NAT when 'snat-route-change' is disabled and a route changes?

    <p>They use the same outbound interface as long as the old route is still active</p> Signup and view all the answers

    What happens to existing sessions with S-NAT when 'snat-route-change' is disabled and the priority of an interface is increased?

    <p>They continue to use the original route until they expire</p> Signup and view all the answers

    What is the primary route for internet traffic when both ISP connections are up?

    <p>port1</p> Signup and view all the answers

    What happens to new sessions when the priority of 'port1' is increased and 'snat-route-change' is disabled?

    <p>They start using 'port2'</p> Signup and view all the answers

    What happens to existing sessions when the priority of 'port1' is increased and 'snat-route-change' is disabled?

    <p>They continue to use 'port1'</p> Signup and view all the answers

    What is the default route for FortiGate?

    <p>port1</p> Signup and view all the answers

    Which action is taken by FortiGate after a routing change when source NAT is not applied?

    <p>All of the above</p> Signup and view all the answers

    What happens to the gateways and interfaces in a session after a routing change without source NAT?

    <p>They are set to 0.0.0.0/0 and 0</p> Signup and view all the answers

    What does the 'preserve-session-route' configuration option on the CLI control?

    <p>The behavior of routing changes without source NAT</p> Signup and view all the answers

    What is the default setting for the 'preserve-session-route' configuration option?

    <p>Disable</p> Signup and view all the answers

    What happens when the 'preserve-session-route' configuration option is set to 'disable'?

    <p>FortiGate flushes all routing information from the session table after a route change</p> Signup and view all the answers

    What does FortiGate do after a routing change when source NAT is not applied?

    <p>All of the above</p> Signup and view all the answers

    What does the 'dirty' flag indicate in a session after a routing change without source NAT?

    <p>The session is affected by the routing change</p> Signup and view all the answers

    What does the 'preserve-session-route' configuration option do when set to 'enable'?

    <p>FortiGate marks existing session routing information as persistent</p> Signup and view all the answers

    What information is set to 0.0.0.0/0 and 0 in a session after a routing change without source NAT?

    <p>Interfaces</p> Signup and view all the answers

    What does FortiGate do after a routing change when source NAT is not applied and the 'preserve-session-route' configuration option is set to 'disable'?

    <p>Flushes all routing information from the session table after a route change</p> Signup and view all the answers

    Study Notes

    Configuring Session Route Persistence

    • The command to configure session route persistence at the interface level is not specified in the text.

    Session Route Persistence

    • When session route persistence is enabled, sessions passing through an interface are not affected by route changes.
    • The default value for session route persistence at the interface level is not specified in the text.

    S-NAT and Route Changes

    • When S-NAT is applied, the default setting for the 'snat-route-change' option is not specified in the text.
    • When 'snat-route-change' is disabled and a route changes, sessions with S-NAT are terminated.
    • When 'snat-route-change' is disabled and the priority of an interface is increased, existing sessions with S-NAT are terminated.

    Routing and Interfaces

    • When both ISP connections are up, the primary route for internet traffic is not specified in the text.
    • When the priority of 'port1' is increased and 'snat-route-change' is disabled, new sessions use the new primary route.
    • When the priority of 'port1' is increased and 'snat-route-change' is disabled, existing sessions are terminated.

    FortiGate Behavior

    • The default route for FortiGate is not specified in the text.
    • After a routing change when source NAT is not applied, FortiGate updates the gateways and interfaces in the session.
    • After a routing change without source NAT, the gateways and interfaces in a session are updated.

    Preserve-Session-Route Configuration

    • The 'preserve-session-route' configuration option on the CLI controls whether FortiGate updates the gateways and interfaces in a session after a routing change.
    • The default setting for the 'preserve-session-route' configuration option is not specified in the text.
    • When the 'preserve-session-route' configuration option is set to 'disable', FortiGate updates the gateways and interfaces in a session after a routing change.
    • When the 'preserve-session-route' configuration option is set to 'enable', FortiGate preserves the original gateways and interfaces in a session after a routing change.

    Session Information

    • In a session after a routing change without source NAT, the 'dirty' flag is set to indicate that the session needs to be updated.
    • In a session after a routing change without source NAT, the information set to 0.0.0.0/0 and 0 indicates that the session needs to be updated.

    Studying That Suits You

    Use AI to generate personalized quizzes and flashcards to suit your learning preferences.

    Quiz Team

    Description

    This quiz tests your understanding of routing changes without source NAT (S-NAT). Learn about what happens to routing information, route cache entries, and sessions that are not using S-NAT after a routing change. Improve your knowledge of FortiGate and its behavior in these scenarios.

    More Like This

    Session 3: The Christian Year
    47 questions
    Session 18: Safe Driving Tips
    21 questions

    Session 18: Safe Driving Tips

    IllustriousHoneysuckle avatar
    IllustriousHoneysuckle
    Session 29: Drinking and Driving pt. 1
    14 questions
    Use Quizgecko on...
    Browser
    Browser