View all questions & answers for the NSE 6 - Network Security 7.6 Support Engineer Materials exam


Question 84 Discussion

Which statement about IKE and IKE NAT-T is true? (Choose one answer)

  • A. IKE is used to encapsulate ESP traffic in some situations, and IKE NAT-T is used only when the local FortiGate is using NAT on the IPsec interface.
  • B. IKE is the standard implementation for IKEv1 and IKE NAT-T is an extension added in IKEv2.
  • C. They each use their own IP protocol number.
  • D. They both use UDP as their transport protocol and the port number is configurable.
Correct Answer: D

Brave-Dump Clients Votes

D 66.67%
C 33.33%

Comments



Mohammed Khaled 2025-11-27 13:28:11

Selected Answers: C


I think the correct answer would be "C" as port 500 and port 4500 are stander ports. and IKE and NAT-T are using different protocol number indeed, ESP 50 or 51 AH. and IKE uses UDP port 500
  • Mohammed Khaled 2025-11-27 13:29:02
    sorry nat-t uses 4500 port, forgot to mention.
  • Adam 2026-01-06 11:28:03
    IKE -> IP Protocol Number 17 for UDP -> UDP 500 NAT-T -> IP Protocol Number 17 for UDP -> UDP 4500 ESP -> IP Protocol Number 50 IKE and NAT-T use same IP Protocol Number 17. C is wrong.

James 2026-01-26 03:50:40

Selected Answers: D


study guide page 339

Mehdi 2026-02-16 13:18:51

Selected Answers: D


C is incorrect IKE (with or without NAT-T) uses UDP (not its own IP protocol number). ESP uses IP protocol 50