14434256
Description
Quiz by Marcos Avila, updated more than 1 year ago
|
Created by Marcos Avila
over 6 years ago
|
|
Question 1
Question
Some system daemons, such as NTP and FortiGuard updates, generate traffic coming from FortiGate. All the VDOMs on a FortiGate device have assigned the role of the management VDOM. Traffic coming from FortiGate to those global services originates from the management VDOM. By default, the VDOM root acts as the management VDOM, but you can manually reassign this task to a different VDOM.
Answer
- True
- False
Question 2
Question
What traffic is always generated from the management VDOM?
Answer
-
a. Link Health Monitor
-
b. FortiGuard
Question 3
Question
Which of the following statements about the management VDOM is true?
Answer
-
a. It is root by default and cannot be changed.
-
b. It is root by default, but can be changed to any VDOM.
Question 4
Question
VDOM
Answer
-
Virtual Domain
-
Virtual Direct Main
Question 5
Question
Which type of administrator can make changes to all VDOMS?
Answer
-
a. A customer VDOM administrator
-
b. An administrator with the super_admin profile
Question 6
Question
Which of the following statements about VDOM administrators is true?
Answer
-
a. There can be only one administrator per VDOM.
-
b. Each VDOM can have multiple administrators.
Question 7
Question
Afiect all configured VDOMs: (Select 5)
Answer
-
Hostname
-
HA settings
-
FortiGuard settings
-
System time
-
Administrative accounts
-
IP Interface
-
Fortiguard account
-
Unit serial number
Question 8
Question
Configured separately, in each VDOM: (Select 5)
Answer
-
Operating mode (transparent, NAT/route)
-
Inspection mode (flow—based, proxy—based)
-
Routes and network interfaces
-
Firewall policies
-
Security profiles
-
Hostname
-
VPN
Question 9
Question
Which of the following configuration settings are global settings?
Answer
-
a. Firewall policies
-
b. FortiGuard settings
Question 10
Question
Which of the following configuration settings are per VDOM settings?
Answer
-
a. Host name
-
b. Inspection mode
Question 11
Question
Complete:
Note that similar to using inter—VLAN routing, Layer 3 must be involved-you cannot create an inter—VDOM link between Layer 2 transparent mode VDOMs.
Answer
-
At least one of the VDOMs must be operating in NAT mode. This, among other benefits, prevents potential Layer 2 loops.
-
At least one of the VDOMs must be operating in transparent mode. This, among other benefits, prevents potential Layer 2 loops.
Question 12
Question
For a FortiGate device with two NP4 or NP6 processors, there are two accelerated inter—VDOM links, each with two interfaces:
Answer
-
-npu0_vlink: npu0_vlink0 npu0_vlink1 -npu1_vlink: npu1_vlink0 npu1_vlink1
-
asic0_vlink: npu0_vlink0 npu0_vlink1 asic1_vlink: npu1_vlink0 npu1_vlink1
Question 13
Question
Which is a requirement for creating an inter—VDOM link between two VDOMs?
Answer
-
a. The inspection mode of at least one VDOM must be proxy based.
-
b. At least one of the VDOMs must be operating in NAT mode.
Question 14
Question
Which type of VDOM link requires that both sides of the link be in the same IP subnet?
Answer
-
a. NAT—to—transparent
-
b. NAT-to-NAT
Question 15
Question
Of these options, which one is a possible reason why an administrator might not be able to gain access to a specific VDOM?
Answer
-
a. The administrator is using an IP address not specified as a trusted host.
-
b. The administrat0r is using the Super_Admin profile.
Question 16
Question
Which troubleshooting tool is best suited when trying to verify the firewall policy used by an inter-VDOM link?
Answer
-
a. Sniffer trace
-
b. Packet flow trace
Want to create your own Quizzes for free with GoConqr? Learn more.