When configuring firewall policies which of the following is true regarding the policy ID? (Choose two answers)

A. It is mandatory to provide a policy ID while creating a firewall policy regardless of GUI or CLI.
B. A firewall policy ID identifies the order of policy execution in firewall policies.
C. You can create a policy in CLI with policy ID 0.
D. A policy ID cannot be edited once a policy is created.

Correct Answer: C,D

Brave-Dump Clients Votes

CD 75%

BD 25%

Comments

SP 2025-06-16 19:53:21

Selected Answers: B, D

i hope B & D is the correct answers

Brave-Dumps Admin 2025-07-12 23:40:42
Dear SP, correct is C, D, please read the comments well.

Brave-Dumps Admin 2025-06-17 12:08:48

Selected Answers: C, D

Dear SP, thank you for sharing your experience in brave-dumps Community,
B is not correct,
the policy ID does not affect the policy execution order, it is just number for identifies, the policy execution depends on which policies appear on GUI, not on the ID.

C & D 100% Correct as per the Guide page 53
C: "Assigning policy ID 0 automatically assigns the next available policy ID number"
D: "The ID number never changes as rules move higher or lower in the sequence"

Download the guide from here: https://drive.google.com/file/d/1aPfho1eYvcAm_U9B9CCxp2hHQ8fDY4E8/view?usp=sharing

Mahboab Ali Ghaleb 2025-07-11 23:33:35

Selected Answers: C, D

About option C:
Yes, in CLI you can use edit 0 to create a new policy.
FortiGate assigns the next available policy ID automatically.
Note: This doesn’t mean the final policy will have ID 0; it's just a placeholder to create a new one.

Brave-Dumps Admin 2025-07-12 23:39:58
Exactly!

Anonymous User 2026-01-20 20:27:58

Selected Answers: C, D

CD correct