Leads4pass > Fortinet > NSE 7 Network Security Architect > NSE7_SDW-6.4 > NSE7_SDW-6.4 Online Practice Questions and Answers

NSE7_SDW-6.4 Online Practice Questions and Answers

Questions 4

Refer to exhibits. Exhibit A.

Exhibit B.

Exhibit A, which shows the SD-WAN performance SLA and exhibit B shows the health of the participating SD-WAN members. Based on the exhibits, which statement is correct?

A. The dead member interface stays unavailable until an administrator manually brings the interface back.

B. The SLA state of port2 has exceeded three consecutive unanswered requests from the SLA server.

C. Port2 needs to wait 500 milliseconds to change the status from alive to dead.

D. Check interval is the time to wait before a packet sent by a member interface considered as lost.

Buy Now
Questions 5

Refer to exhibits.

Exhibit A, which shows the SD-WAN performance SLA and exhibit B shows the health of the participating SD-WAN members.

Based on the exhibits, which statement is correct?

A. The dead member interface stays unavailable until an administrator manually brings the interface back.

B. Port2 needs to wait 500 milliseconds to change the status from alive to dead.

C. Static routes using port2 are active in the routing table.

D. FortiGate has not received three consecutive requests from the SLA server configured for port2.

Buy Now
Questions 6

Refer to the exhibit.

Which two statements about the status of the VPN tunnel are true?

A. There are separate virtual interfaces for each dial-up client.

B. VPN static routes are prevented from populating the FortiGate routing table.

C. FortiGate created a single IPsec virtual interface that is shared by all clients.

D. 100.64.3.1 is one of the remote IP address that comes through index interface 1.

Buy Now
Questions 7

What is the purpose of a predefined template on the FortiAnalyzer?

A. It can be edited and modified as required

B. It specifies the report layout which contains predefined texts, charts, and macros

C. It specifies report settings which contains time period, device selection, and schedule

D. It contains predefined data to generate mock reports

Buy Now
Questions 8

Which statement reflects how BGP tags work with SD-WAN rules?

A. BGP tags match the SD-WAN rule based on the order that these rules were installed.

B. BGP tags require that the adding of static routes be enabled on all ADVPN interfaces

C. Route tags are used for a BGP community and the SD-WAN rules are assigned the same tag

D. VPN topologies are formed using only BGP dynamic routing with SD-WAN

Buy Now
Questions 9

Refer to the exhibit.

Based on the output, which two conclusions are true? (Choose two.)

A. The all_rules rule represents the implicit SD-WAN rule.

B. There is more than one SD-WAN rule configured.

C. Entry 1 (id=1) is a regular policy route.

D. The SD-WAN rules takes precedence over regular policy routes.

Buy Now
Questions 10

Which CLI command do you use to perform real-time troubleshooting for ADVPN negotiation?

A. diagnose sys virtual-wan-link service

B. get router info routing-table

C. diagnose debug application ike

D. get ipsec tunnel list

Buy Now
Questions 11

Refer to the exhibit.

Based on the output, which two statements are true? (Choose two )

A. The diagnostic output presents only of the policy routes

B. The all_rules rule is the implicit SD-WAN rule in place

C. There is more than one SD-WAN rule configured

D. At least one policy route is implemented and in effect

Buy Now
Questions 12

Which statement is correct about SD-WAN and ADVPN?

A. You must use OSPF.

B. SD-WAN can steer traffic to ADVPN shortcuts established over IPsec overlays configured as SD-WAN members.

C. Routes for ADVPN shortcuts must be manually configured.

D. SD-WAN does not monitor the health and performance of ADVPN shortcuts.

Buy Now
Questions 13

What are two reasons why FortiGate would be unable to complete the zero-touch provisioning process? (Choose two.)

A. The FortiGate cloud key has not been added to the FortiGate cloud portal.

B. FortiDeploy has connected with FortiGate and provided the initial configuration to contact FortiManager

C. The zero-touch provisioning process has completed internally, behind FortiGate.

D. FortiGate has obtained a configuration from the platform template in FortiGate cloud.

E. A factory reset performed on FortiGate.

Buy Now
Exam Code: NSE7_SDW-6.4
Exam Name: Fortinet NSE 7 - SD-WAN 6.4
Last Update: Aug 22, 2023
Questions: 80
10%OFF Coupon Code: SAVE10

PDF (Q&A)

$49.99

VCE

$55.99

PDF + VCE

$65.99