Fortinet FCSS_EFW_AD-7.4 Übungsprüfungen
Zuletzt aktualisiert am 28.08.2025- Prüfungscode: FCSS_EFW_AD-7.4
- Prüfungsname: FCSS - Enterprise Firewall 7.4 Administrator
- Zertifizierungsanbieter: Fortinet
- Zuletzt aktualisiert am: 28.08.2025
Which of the following statements are correct regarding application layer test commands? (Choose two.)
- A . They are used to filter real-time debugs.
- B . They display real-time application debugs.
- C . Some of them display statistics and configuration information about a feature or process.
- D . Some of them can be used to restart an application.
Which three steps are executed to get antivirus and IPS updates using the pull method? (Choose three.)
- A . FortiGate starts sending rating queries to one of the servers in the list.
- B . FortiGate periodically queries for pending updates.
- C . FortiGate gets a list of server IP addresses that can be contacted.
- D . FortiGate contacts a DNS server to resolve the FortiGuard domain name.
- E . FortiGate registers its public IP address in FortiGuard.
Refer to the exhibit, which contains partial output from an IKE real-time debug.
The administrator does not have access to the remote gateway.
Based on the debug output, which configuration change can the administrator make to the local gateway to resolve the phase 1 negotiation error?
- A . In the phase 1 network configuration, set the IKE version to 2.
- B . In the phase 1 proposal configuration, add AES128-SHA128 to the list of encryption algorithms.
- C . In the phase 1 proposal configuration, add AESCBC-SHA2 to the list of encryption algorithms.
- D . In the phase 1 proposal configuration, add AES256-SHA256 to the list of encryption algorithms.
In which of the following states is a given session categorized as ephemeral? (Choose two.)
- A . A TCP session waiting to complete the three-way handshake.
- B . A TCP session waiting for FIN ACK.
- C . A UDP session with packets sent and received.
- D . A UDP session with only one packet received.
Refer to the exhibit, which shows the output of a diagnose command.
What can you conclude from the output shown in the exhibit? (Choose two.)
- A . This is a pinhole session created to allow traffic for a protocol that requires additional sessions to operate through FortiGate.
- B . This is an expected session created by the IPS engine.
- C . Traffic in the original direction (coming from the IP address 10.171.121.38) will be routed to the next-hop IP address 10.200.1.1.
- D . Traffic in the original direction (coming from the IP address 10.171.121.38) will be routed to the next-hop IP address 10.0.1.10.
Refer to the exhibit, which contains the partial output of an IKE real-time debug.
The administrator does not have access to the remote gateway. Based on the debug output, which configuration change can the administrator make to the local gateway to resolve the phase 1 negotiation error?
- A . Change phase 1 encryption to AESCBC and authentication to SHA128.
- B . Change phase 1 encryption to 3DES and authentication to CBC.
- C . Change phase 1 encryption to AES128 and authentication to SHA512.
- D . Change phase 1 encryption to 3DES and authentication to SHA256.
View the exhibit, then answer the question below.
Which of the following commands will bring up the tunnel?
- A . diagnose vpn tunnel up 10.200.1.1
- B . diagnose vpn tunnel H2S_0 up
- C . diagnose vpn tunnel up H2S_0
- D . diagnose vpn tunnel up H2S_0_0
Refer to the exhibit, which shows the output of a debug command.
What can be concluded from the debug command output?
- A . The OSPF router with the ID 0.0.0.69 has its OSPF priority set to 0.
- B . The local FortiGate has a different MTU value from the OSPF router with ID 0.0.0.2, based on the state information.
- C . There are more than two OSPF routers on the wan2 network.
- D . The interface ToRemote is a broadcast OSPF network.
View the exhibit, which contains the partial output of a diagnose command, and then answer the question below.
Based on the output, which of the following statements is correct?
- A . Anti-replay is enabled.
- B . DPD is disabled.
- C . Quick mode selectors are disabled.
- D . Remote gateway IP is 10.200.5.1.
How does FortiManager handle FortiGuard requests from FortiGate devices, when it is configured as a local FDS?
- A . FortiManager can download and maintain local copies of FortiGuard databases.
- B . FortiManager supports only FortiGuard push to managed devices.
- C . FortiManager will respond to update requests only if they originate from a managed device.
- D . FortiManager does not support rating requests.