FortiGate has two separate firewall policies for Sales and Engineering to access the same web server with the same security profiles. Which action must the administrator perform to consolidate the two policies into one? (Choose one answer)

A. Enable Multiple Interface Policies to select port1 and port2 in the same firewall policy
B. Replace port1 and port2 with the any interface in a single firewall policy
C. Select port1 and port2 subnets in a single firewall policy
D. Create an Interface Group that includes port1 and port2 to create a single firewall policy

Correct Answer: A

Brave-Dump Clients Votes

D 50%

A 50%

Comments

Ali Qasem 2025-05-28 12:45:24

Selected Answers: D

Why Other Options Fail:
A: "Multiple Interface Policies" isn’t a FortiGate feature. Policies can’t natively select multiple interfaces without grouping.
B: Using any is insecure (overly permissive) and doesn’t explicitly consolidate the interfaces.
C: Subnet-based rules don’t solve the interface-specific policy duplication.

Ali Qasem 2025-05-28 13:10:33
NVM A is the wright answer

Brave-Dumps Admin 2025-05-28 17:27:34

Selected Answers: A

Thank you for sharing your experience with the Brave-Dumps community!

As per Fortigate Administrator 7.4 study guide page 37,
"However, you can enable the Multiple Interface Policies option on the Feature Visibility page to disable the single interface restriction."
"You can also specify multiple interfaces..."

Answer 100% is A,
__

D is not correct, While creating an Interface Group including port1 and port2 might seem like a valid approach, FortiGate does not support using Interface Groups directly as source or destination interfaces in firewall policies. Therefore, the correct method to consolidate policies across multiple interfaces is by enabling the 'Multiple Interface Policies' feature, which allows specifying multiple interfaces within a single policy configuration.