Create Next App

Exam contains 65 questions

Page 7 of 11

Question 37 🔥

You are asked to design a secure solution using Fortinet products for a company. The company recently has Web servers that were exploited and defaced. The customer has also experienced Denial or Service due to SYN Flood attacks. Taking this into consideration, the customers solution should have the following requirements:- management requires network-based content filtering with man-in-the-middle inspection- the customer has no existing public key infrastructure but requires centralized certificate management- users are tracked by their active directory username without installing any software on their hosts- Web servers that have been exploited need to be protected from the OWASP Top 10- notification of high volume SYN Flood attacks when a threshold has been triggeredWhich three solutions satisfy these requirements? (Choose three.)

Which database solution meets these requirements?

Discussion of the question

Question 38 🔥

A customer just bought an additional FortiGate device and plans to use their existing load balancer to distribute traffic across two FortiGate units participating on aBGP network serving different neighbors. The customer has mixed traffic of IPv4 and IPv6 TCP, UDP, and ICMP. The two FortiGate devices shown in the exhibit should be redundant to each other so that the NAT session and active session tables will synchronize and fail over to the unit that is still operating without any loss of data if one of the units fail.Which high availability solution would you implement?

Which database solution meets these requirements?

B. Fortinet redundant UTM protocol (FRUP)

Highly voted

C. FortiGate Session Life Support Protocol (FGSP)

Highly voted

D. Virtual Router Redundancy Protocol (VRRP)

Highly voted

A. FortiGate Cluster Protocol (FGCP)

Highly voted

Discussion of the question

Question 39 🔥

A university is looking for a solution with the following requirements:- wired and wireless connectivity- authentication (LDAP)- Web filtering, DLP and application control- data base integration using LDAP to provide access to those students who are up-to-date with their monthly payments- support for an external captive portalWhich solution meets these requirements?

Which database solution meets these requirements?

A. FortiGate for wireless controller and captive portal FortiAP for wireless connectivity FortiAuthenticator for user authentication and REST API for DB integration FortiSwitch for PoE connectivity FortiAnalyzer for log and report

Highly voted

B. FortiGate for wireless controller FortiAP for wireless connectivity FortiAuthenticator for user authentication, captive portal and REST API for DB integration FortiSwitch for PoE connectivity FortiAnalyzer for log and report

Highly voted

C. FortiGate for wireless control and user authentication FortiAuthenticator for captive portal and REST API for DB integration FortiAP for wireless connectivity FortiSwitch for PoE connectivity FortiAnalyzer for log and report

Highly voted

D. FortiGate for wireless controller FortiAP for wireless connectivity and captive portal FortiSwitch for PoE connectivity FortiAuthenticator for user authentication and REST API for DB integration

Highly voted

Discussion of the question

Question 40 🔥

A customer wants to secure the network shown in the exhibit with a full redundancy design.Which security design would you use?

Which database solution meets these requirements?

A. Place a FortiGate FGCP Cluster between DD and AA, then connect it to SW1, SW2, SW3, and SW4.

Highly voted

B. Place a FortiGate FGCP Cluster between BB and CC, then connect it to SW1, SW2, SW3, and SW4.

Highly voted

C. Place a FortiGate FGCP Cluster between BB and AA, then connect it to SW1, SW2, SW3, and SW4.

Highly voted

D. Place a FortiGate FGCP Cluster between DD and FF, then connect it to SW1, SW2, SW3, and SW4.

Highly voted

Discussion of the question

Question 41 🔥

A customer has the following requirements:- local peer with two Internet links- remote peer with one Internet link- secure traffic between the two peers- granular control with Accept policiesWhich solution provides security and redundancy for traffic between the two peers?

Which database solution meets these requirements?

A. a fully redundant VPN with interface mode configuration

Highly voted

B. a partially redundant VPN with interface mode configuration

Highly voted

C. a partially redundant VPN with tunnel mode configuration

Highly voted

D. a fully redundant VPN with tunnel mode configuration

Highly voted

Discussion of the question

Question 42 🔥

How would you apply security to the network shown in the exhibit?

Which database solution meets these requirements?

A. Replace RW1 with a ruggedized FortiGate and RW2 with a normal FortiGate. Enable industrial category on the application control. Place a FortiGate to secure Web servers. Configure IPsec to secure sensors data. Place a ruggedized FortiAP to provide Wi-Fi to the sensors.

Highly voted

B. Replace RW1 with a normal FortiGate and RW2 with a ruggedized FortiGate. Enable industrial category on the application control. Place a FortiGate to secure Web servers. Configure IPsec to secure sensors data. Place a FortiAP to provide Wi-Fi to the sensors.

Highly voted

C. Replace RW1 with a normal FortiGate and RW2 with a ruggedized FortiGate. Enable industrial category on the Web filter. Place a FortiWeb to secure Web servers. Configure IPsec to secure sensors data. Place a ruggedized FortiAP to provide Wi-Fi to the sensors.

Highly voted

D. Replace RW1 with a normal FortiGate and RW2 with a ruggedized FortiGate. Enable industrial category on the application control. Place a FortiWeb to secure

Highly voted

Discussion of the question

Ready to Pass Your Certification Test

fortinet NSE8

Exam contains 65 questions

Lorem ipsum dolor sit amet consectetur. Eget sed turpis aenean sit aenean. Integer at nam ullamcorper a.

Company

Product

Resources

Follow us