Fortinet Exam NSE4_FGT-7.2 Topic 2 Question 19 Discussion

Actual exam question for Fortinet's NSE4_FGT-7.2 exam

Question #: 19
Topic #: 2

[All NSE4_FGT-7.2 Questions]

In which two ways can RPF checking be disabled? (Choose two )

AEnable anti-replay in firewall policy.

BDisable the RPF check at the FortiGate interface level for the source check

CEnable asymmetric routing.

DDisable strict-arc-check under system settings.

Show Suggested Answer

Suggested Answer: B, D, E

FortiGate Infrastructure 7.2 Study Guide (p.127-128): 'As previously stated, collector agent-based polling mode has three methods (or options) for collecting login information. The order on the slide from left to right shows most recommend to least recommended: (WMI, WinSecLog, and NetAPI)'

by Tasia at Nov 24, 2023, 01:08 PM

Limited Time Offer

25%

Off

Get Premium NSE4_FGT-7.2 Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

Submit Cancel

Ira

1 years ago

This question is giving me a headache. I feel like I should know this stuff, but the options are throwing me off. Maybe I need to brush up on my Active Directory knowledge before the exam. Though, I have to admit, 'FortiGate polling' did make me chuckle a bit.

upvoted 0 times

...

Gertude

1 years ago

FortiGate polling? Really? That's got to be a trick answer. I doubt the collector agent would use that. Novell API and WinSecLog also seem a bit out of place here. I'm going with D, B, and probably E, although I'm not 100% sure about that one.

upvoted 0 times

...

In

1 years ago

I'm leaning towards D and B as the correct answers. WMI is a common interface for interacting with Windows systems, and NetAPI seems like a reasonable choice too. I'm not so sure about the other options though.

upvoted 0 times

...

1 years ago

I think WMI and NetAPI are definitely used for AD polling.

upvoted 0 times

...