Fortinet Network Security Expert 5 Written (500) Set 5

An intermittent connectivity issue is noticed between two devices located behind the FortiGate dmz and internal interfaces. A continuous sniffer trace is run on the FortiGate unit that the administrator will convert into a .cap file for an off-line analysis with a sniffer application. Given the high volume of global traffic on the network, which of the following CLI commands will best allow the administrator to perform this troubleshooting operation?

The Host Check feature can be enabled on the FortiGate unit for SSL VPN connections. When this feature is enabled, the FortiGate unit probes the remote host computer to verify that it is safe before access is granted. Which of the following items is NOT an option as part of the Host Check feature?

In the Tunnel Mode widget of the web portal, the administrator has configured an IP Pool and enabled split tunneling. Which of the following statements is true about the IP address used by the SSL VPN client?

An issue could potentially occur when clicking Connect to start tunnel mode SSL VPN. The tunnel will start up for a few seconds, then shut down. Which of the following statements best describes how to resolve this issue?

You are the administrator in charge of a FortiGate unit which acts as a VPN gateway. You have chosen to use Interface Mode when configuring the VPN tunnel and you want users from either side to be able to initiate new sessions. There is only 1 subnet at either end and the FortiGate unit already has a default route. Which of the following configuration steps are required to achieve these objectives? (Select all that apply.)

A network administrator needs to implement dynamic route redundancy between a FortiGate unit located in a remote office and a FortiGate unit located in the central office. The remote office accesses central resources using IPSec VPN tunnels through two different Internet providers. What is the best method for allowing the remote office access to the resources through the FortiGate unit used at the central office?

A FortiClient fails to establish a VPN tunnel with a FortiGate unit.
The following information is displayed in the FortiGate unit logs:
msg=Initiator: sent 192.168.11.101 main mode message #1 (OK)
msg=Initiator: sent 192.168.11.101 main mode message #2 (OK)
msg=Initiator: sent 192.168.11.101 main mode message #3 (OK)
msg=Initiator: parsed 192.168.11.101 main mode message #3 (DONE)
msg=Initiator: sent 192.168.11.101 quick mode message #1 (OK)
msg=Initiator: tunnel 192.168.1.1/192.168.11.101 install ipsec sa
msg=Initiator: sent 192.168.11.101 quick mode message #2 (DONE)
msg=Initiator: tunnel 192.168.11.101, transform=ESP_3DES, HMAC_MD5
msg=Failed to acquire an IP address
Which of the following statements is a possible cause for the failure to establish the VPN tunnel?

An administrator sets up a new FTP server on TCP port 2121. A FortiGate unit is located between the FTP clients and the server. The administrator has created a policy for TCP port 2121. Users have been complaining that when downloading data they receive a 200 Port command successful message followed by a 425 Cannot build data connection message. Which of the following statements represents the best solution to this problem?

Which of the following Session TTL values will take precedence?

Which of the following items is NOT a packet characteristic matched by a firewall service object?