Fortinet FCSS_EFW_AD-7.4 Übungsprüfungen
Zuletzt aktualisiert am 29.08.2025- Prüfungscode: FCSS_EFW_AD-7.4
- Prüfungsname: FCSS - Enterprise Firewall 7.4 Administrator
- Zertifizierungsanbieter: Fortinet
- Zuletzt aktualisiert am: 29.08.2025
Question #81
Refer to the exhibit, which shows VDOM link interfaces.
For the VDOM link shown, what is the meaning of np0 and np1?
- A . They are the VRD ID numbers of each VDOM interface.
- B . FortiGate automatically assigns a native ASIC network processor to available VDOM interfaces.
- C . They represent the ID number of each VDOM for traffic management.
- D . FortiGate automatically assigns unique names to VDOM links by appending 0 and 1.
Question #82
An administrator is configuring ADVPN in a hub-and-spoke topology. The administrator will use IBGP to route traffic between the VPN sites.
Which IBGP setting needs to be enabled on the hub, for dynamic routing to work properly for on-demand tunnels?
- A . route-reflector-client
- B . next-hop-self
- C . route-server-client
- D . ibgp-multipath
Question #83
Refer to the exhibit, which contains partial output from an IKE real-time debug.
Which two statements about this debug output are correct? (Choose two.)
- A . The initiator provided remote as its IPsec peer ID.
- B . It shows a phase 2 negotiation.
- C . Perfect Forward Secrecy (PFS) is enabled in the configuration.
- D . The local gateway IP address is 10.0.0.1.
Question #84
View the following exhibit:
Given the output showing a real-time debug, which statement describes why the update is failing?
- A . FortiGate is unable to establish a TCP connection with FDS.
- B . FortiGate is unable to resolve the required FQDN (service.fortiguard.net) for AV and IPS updates.
- C . The administrator should use the execute update-wf command instead.
- D . The update should be using port 53 or port 8888, instead of port 443.