View all questions & answers for the NSE 7 - Enterprise Firewall 7.6 Administrator Exam Materials exam
Question 18 Discussion
Comments
Selected Answers: D
Selected Answers: C
Selected Answers: D
Selected Answers: D
# Life of a Packet—Initial Session Packets
Network Interface -> mandatory
---
Access Control List (ACL) -> optional/configurable
Host Protection Engine (HPE) -> optional/configurable
IP integrity header checking -> mandatory -------------------------> D is right
IPsec VPN decryption -> optional/configurable --------------------> B is wrong
---
Quarantine -> optional/configurable
FortiTelemetry -> optional/configurable
User authentication (captive portal) -> optional/configurable
---
Kernel -> mandatory
1. Destination NAT
2. Routing, RPF check, and SD-WAN --------------------------------> C is wrong
3. Stateful inspection/policy lookup/session management
4. Session helpers
5. User authentication
6. Device identification
7. SSL VPN
8. Local management traffic
---
UTM/NGFW -> optional/configurable
1. Flow-based inspection
2. Proxy-based inspection
3. Explicit web proxy
4. Botnet check
---
Kernel -> mandatory
1. Forwarding
2. Source NAT
---
IPsec VPN encryption -> optional/configurable
---
Traffic shaping -> optional/configurable
---
WAN optimization -> optional/configurable
---
Network interface -> mandatory
-----------------------------------------------------------------------------------
From Study Guide:
The FortiGate CPU always processes the first part of traffic:
-> TCP traffic: the first three-way handshake
-> UDP traffic: the first packet
So A is wrong
To secure your enterprise network traffic, which step does FortiGate perform first, when handling the first packets of a session? (Choose one answer)
Brave-Dump Clients Votes