New Year Sale 2026! Hurry Up, Grab the Special Discount - Save 25% - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions
Mail Us support@pass4success.com
Location US
Mob_nav_barsMENU

Fortinet NSE4_FGT_AD-7.6 Exam - Topic 1 Question 6 Discussion

Actual exam question for Fortinet's NSE4_FGT_AD-7.6 exam
Question #: 6
Topic #: 1
[All NSE4_FGT_AD-7.6 Questions]

Refer to the exhibit.

An administrator has configured an Application Overrides for the ABC.Com application signature and set the Action to Allow This application control profile is then applied to a firewall policy that is scanning all outbound traffic. Logging is enabled in the firewall policy. To test the configuration, the administrator accessed the ABC.Com web site several times.

Why are there no logs generated under security logs for ABC.Com?

Show Suggested Answer Hide Answer
Suggested Answer: D

In FortiOS 7.6 Application Control, security logs are generated primarily for actions such as Block or Monitor, not for Allow actions.

What is happening in the exhibit

An Application Override is configured for ABC.Com

Type: Application

Action: Allow

The application control profile is applied to a firewall policy

Logging is enabled on the firewall policy

Traffic to ABC.Com is successfully allowed

However, no security logs appear for ABC.Com.

Why no logs are generated

In FortiOS 7.6:

Application Control logs are written to Security Logs when:

An application is Blocked

An application is Monitored

When an application action is set to Allow:

The traffic is permitted silently

No application control security log is generated

Even if policy logging is enabled

This is expected and documented behavior.

To generate logs for allowed applications, the action must be set to Monitor, not Allow.

Why the other options are incorrect

A. ABC.Com is hitting the category Excessive-Bandwidth Incorrect. ABC.Com has a higher-priority explicit override (priority 1), so it is not evaluated against the Excessive-Bandwidth filter.

B. The ABC.Com Type is set as Application instead of Filter Incorrect. Application-type overrides are valid and commonly used; this does not suppress logging.

C. The ABC.Com must be configured as a web filter profile Incorrect. This traffic is being evaluated by Application Control, not Web Filter.


by Jerry at Jan 05, 2026, 05:16 AM

Limited Time Offer

25%

Off

Get Premium NSE4_FGT_AD-7.6 Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

0/2000 characters
Submit Cancel
Laquanda
3 days ago
Haha, looks like the admin needs to brush up on their Fortinet configuration skills!
upvoted 0 times
...
Caprice
8 days ago
The ABC.Com is configured under application profile, which must be configured as a web filter profile.
upvoted 0 times
...
Tarra
13 days ago
D) The ABC Com Action is set to Allow
upvoted 0 times
...
Ozell
18 days ago
I think the issue could be related to the application profile needing to be a web filter profile instead of just an application profile. That sounds familiar.
upvoted 0 times
...
Haley
23 days ago
I feel like I read that if an application is set to Allow, it might not generate logs, but I can't recall the details.
upvoted 0 times
...
Leila
28 days ago
This question seems similar to one we practiced where the application type affected logging. I think the type might be important here.
upvoted 0 times
...
Lamar
1 month ago
I remember something about application overrides, but I'm not sure if the action being set to Allow would prevent logging.
upvoted 0 times
...
Keva
1 month ago
Alright, let me break this down step-by-step. The key information seems to be that the Application Overrides is set to Allow, and logging is enabled in the firewall policy. So the lack of logs suggests the traffic is being allowed and not triggering any logging. I'll go with option D.
upvoted 0 times
...
Casie
1 month ago
I'm a bit uncertain here. The question mentions the traffic is being scanned by a firewall policy, so I'm wondering if the issue could be related to how the policy is configured, rather than just the Application Overrides. I might need to double-check the firewall policy settings.
upvoted 0 times
...
Jodi
2 months ago
I'm feeling pretty confident about this one. If the Action is set to Allow, then the traffic for ABC.Com would be allowed and not logged, which is why there are no logs generated. I'll go with option D.
upvoted 0 times
...
Yolande
2 months ago
Okay, let me think this through. The question says the administrator has configured an Application Overrides for the ABC.Com application signature and set the Action to Allow. So option D seems like the most likely answer.
upvoted 0 times
...
Mammie
2 months ago
Hmm, this is a tricky one. I'm a bit confused about the different options here. I'll need to carefully review the details of the configuration to figure out what might be causing the lack of logs.
upvoted 0 times
...

Save Cancel