FORTINET-Fortinet Troubleshooting Professional

1.

When using the SSL certificate inspection method to inspect HTTPS traffic, how does FortiGate filler web requests when the client browser does not provide the server name indication (SNI) extension ?

FortiGate switches to the full SSL inspection method to decrypt the data. FortiGate blocks the request without any further inspection. FortiGate uses the Issued T FortiGate uses the requested URL from the user's web browser.

2.

What does the dirty flag mean in a FortiGate session?

The session must be removed from the former primary unit after an HA failover. Traffic has been identified as from an application that is not allowed. The next packet must be re-evaluated against the firewall policies. Traffic has been blocked by the antivirus inspection.

3.

View these partial outputs from two routing debug commands: Which outbound interface will FortiGate use to route web traffic from internal users to the Internet?

Both port1 and port2 port3 port2 port1

FORTINET-Fortinet Troubleshooting Professional

Answer & Solution

Answer: Option B

Solution:

Answer & Solution

Answer: Option B

Solution:

Answer & Solution

Answer: Option B

Solution:

Congratulations

COMPANY

Products

OTHERS

Partner

FORTINET-Fortinet Troubleshooting Professional

Answer & Solution

Answer: Option B

Solution:

Answer & Solution

Answer: Option B

Solution:

Answer & Solution

Answer: Option B

Solution:

Congratulations

Detail Form

COMPANY

Products

OTHERS

Partner