NSE8_811 무료 덤프문제 온라인 액세스

Exhibit
Click the Exhibit button.
You have deployed several perimeter FortiGates with internal segmentation FortiGates behind them. All FortiGate devices are logging to FortiAnalyzer. When you search the logs in FortiAnalyzer for denied traffic, you see numerous log messages, as shown in the exhibit, on your perimeter FortiGates only.

Which two actions would reduce the number of these log messages? (Choose two.)

• A.Disable DNS events logging horn ForirGate In the config log fortianalyser filter section.
• B.Remove DNS signature* <rom the IPS protte appfced to the outbound firewall policy.
• C.Configure the internal ForbGates to communicate to ForpGuard using port 8888.
• D.Apply an application control profile lo the perimeter FortiGates that does not inspect DNS traffic to the outbound firewall policy.

Click the Exhibit button.

Referring to the exhibit, a FortiADC is load balancing IPv4 traffic between two next-hop routers. The FortiADC does not know the IP addresses of the servers. Also, the FortiADC is doing Layer 7 content inspection and modification.
In this scenario, which application delivery control is configured in the FortiADC?

• A.Laye.4
• B.Layer 7
• C.Layer 3
• D.Layer 2

You configure an outgoing firewall policy with a web filter for accessing the internet. The access to URL https// itacm.co and web belonging to the same category should be blocked. You notice that the Web server presents a certificate with CN=www acme.com. The www.it.acme site is as '' information Technology and the www.acme.com site is categorized as ''Business".
Which statements is correct in this scenario?

• A.Category :information Technology" needs to be blocked, the SNI takes precedence over the certificate name.
• B.Category "information Technology" needs to blocked, the FortiGate is able to inspection the URL with HTTPS sessions.
• C.SSL inspection must be configured to deep-inspection: the category "information Technology "needs to be blocked.
• D.Category "Business" need a to be block: the certificate name takes precedence over the SNI.

A FortiGate with the default configuration shown below is deployed between two IP telephones. FortiGate receives the INVITE request shown in the exhibit from Phone A (internal) to Phone B (external).
NVITE sip:[email protected] SIP/2.0
Via: SIP/2.0/UDP 10.31.101.20:5060
From: PhoneA <sip:[email protected]>
To: PhoneB <sip:[email protected]>
Call-ID: [email protected]
CSeq: 1 INVITE
Contact: sip:[email protected]
v=0
o=PhoneA 5462346 332134 IN IP4 10.31.101.20
c=IN IP4 10.31.101.20
m=audio 49170 RTP 0 3
Which two statements are correct after the FortiGate receives the packet? (Choose two.)

• A.A pinhole will be opened to accept traffic sent to the FortiGate WAN IP address.
• B.NAT takes place at both the network and SIP application layers.
• C.A pinhole is not required to accept traffic sent to the FortiGate WAN IP address.
• D.NAT takes place only in the SIP application layer.

A customer is looking for a way to remove javascripts, macros and hyperlinks from documents traversing the network without affecting the integrity of the content. You propose to use the Content disarm and
reconstruction (CDR) feature of the FortiGate.
Which two considerations are valid to implement CDR in this scenario? (Choose two.)

• A.CDR is supported on HTTPS, SMTPS, and IMAPS if deep inspection is enabled.
• B.Files processed by CDR can have the original copy quarantined on the FortiGate.
• C.The inspection mode of the FortiGate is not relevant for CDR to operate.
• D.CDR can only be performed on Microsoft Office Document and PDF files.