New Year Sale 2026! Hurry Up, Grab the Special Discount - Save 25% - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions
Mail Us support@pass4success.com
Location US
Mob_nav_barsMENU

Fortinet NSE7_OTS-7.2 Exam - Topic 1 Question 13 Discussion

Actual exam question for Fortinet's NSE7_OTS-7.2 exam
Question #: 13
Topic #: 1
[All NSE7_OTS-7.2 Questions]

Refer to the exhibit.

PLC-3 and CLIENT can send traffic to PLC-1 and PLC-2. FGT-2 has only one software switch (SSW-1) connecting both PLC-3 and CLIENT. PLC-3 and CLIENT cannot send traffic to each other.

Which two statements about the traffic between PCL-1 and PLC-2 are true? (Choose two.)

Show Suggested Answer Hide Answer
Suggested Answer: B, D

by Cheryll at Jul 01, 2024, 02:06 AM

Limited Time Offer

25%

Off

Get Premium NSE7_OTS-7.2 Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

0/2000 characters
Submit Cancel
Paul
3 months ago
C seems right, traffic inspection is crucial in OT networks.
upvoted 0 times
...
Brittni
3 months ago
B is true, micro-segmentation does limit device communication.
upvoted 0 times
...
Jarvis
3 months ago
Wait, does FGT-2 really control intra-VLAN traffic? Sounds off.
upvoted 0 times
...
Ilona
4 months ago
I disagree, software switches can also handle that.
upvoted 0 times
...
Alton
4 months ago
A hardware switch is definitely needed for micro-segmentation.
upvoted 0 times
...
Thomasena
4 months ago
I’m a bit confused about the hardware switch requirement in option A. I thought micro-segmentation could be implemented with software switches too?
upvoted 0 times
...
Kristine
4 months ago
I practiced a similar question where firewall policies controlled traffic, so I’m leaning towards option D being correct as well.
upvoted 0 times
...
Sunshine
4 months ago
I think option B sounds right because micro-segmentation is supposed to limit device communication, but I’m not completely confident about the specifics.
upvoted 0 times
...
Janella
5 months ago
I remember studying micro-segmentation, but I'm not sure if it applies here since PLC-3 and CLIENT can't communicate directly.
upvoted 0 times
...
Elise
5 months ago
I'm a bit confused about the role of the FGT-EDGE device. The question mentions that traffic must be inspected by it, but I'm not sure how that relates to the statements about the traffic between PLC-1 and PLC-2. I'll need to think this through more carefully.
upvoted 0 times
...
Hermila
5 months ago
Okay, I think I've got it. The switch on the FortiGate device is a software switch, not a hardware switch. So micro-segmentation is being implemented through firewall policies, not through a hardware-based approach.
upvoted 0 times
...
Garry
5 months ago
Hmm, the key information here is that PLC-3 and CLIENT can't communicate directly, but they can both send traffic to PLC-1 and PLC-2. I think the answer has something to do with how the FortiGate device is handling the intra-VLAN traffic.
upvoted 0 times
...
Brittni
5 months ago
This question seems to be testing my understanding of micro-segmentation and how it's implemented on the Fortinet FortiGate device. I'll need to carefully analyze the network diagram and the statements to determine the correct answers.
upvoted 0 times
...
Gwenn
5 months ago
Hmm, this looks like a tricky one. I'll need to think carefully about the languages Cisco supports for their pxGrid SDK.
upvoted 0 times
...
Tamera
5 months ago
I'm a little confused by the wording here. I'll need to re-read the question and think about the essential elements of a disaster recovery setup.
upvoted 0 times
...
Phil
5 months ago
Hmm, I'm a bit unsure about this one. The question is asking how to collect logs from both VMs and services, so I'm not sure if option A is sufficient since it only mentions Stackdriver. I might need to look into the other options a bit more.
upvoted 0 times
...
Keva
2 years ago
Haha, this exam is definitely keeping us on our toes! I'd go with B and D, but I'm also curious about C. Maybe the FGT-EDGE is like the bouncer at the OT party, making sure everyone behaves before they get to the firewall.
upvoted 0 times
Felicitas
1 year ago
Let's hope we both pass this exam with flying colors!
upvoted 0 times
...
Chan
2 years ago
Yeah, C is interesting. Maybe FGT-EDGE is the gatekeeper before traffic hits the firewall.
upvoted 0 times
...
Rosamond
2 years ago
I think you're right, B and D seem like the correct choices.
upvoted 0 times
...
Carri
2 years ago
I agree, this exam is no joke!
upvoted 0 times
...
...
Tequila
2 years ago
Shouldn't option C be true as well? I mean, in OT networks, the traffic should be inspected by the FGT-EDGE, right? Otherwise, how will the firewall policies on FGT-2 be effective?
upvoted 0 times
Tawanna
1 year ago
Micro-segmentation on FGT-2 prevents direct device-to-device communication, which is crucial for securing the network.
upvoted 0 times
...
Ira
1 year ago
FGT-2 controls intra-VLAN traffic through firewall policies, so option D is important for communication between PLC-1 and PLC-2.
upvoted 0 times
...
Barbra
2 years ago
Option C is not necessary for traffic between PLC-1 and PLC-2. It's about traffic inspection in OT networks.
upvoted 0 times
...
Blair
2 years ago
C) Traffic must be inspected by FGT-EDGE in OT networks.
upvoted 0 times
...
Karon
2 years ago
B) Micro-segmentation on FGT-2 prevents direct device-to-device communication.
upvoted 0 times
...
Sarah
2 years ago
A) The switch on FGT-2 must be hardware to implement micro-segmentation.
upvoted 0 times
...
...
Shonda
2 years ago
I agree with Brittni, B makes more sense in this scenario.
upvoted 0 times
...
Brittni
2 years ago
But micro-segmentation on FGT-2 prevents direct device-to-device communication, so it must be B.
upvoted 0 times
...
Francoise
2 years ago
I disagree, I believe the answer is D.
upvoted 0 times
...
Brittni
2 years ago
I think the answer is A.
upvoted 0 times
...
Chun
2 years ago
I'm not too sure about this one. A hardware switch on FGT-2 doesn't seem necessary for micro-segmentation, so I'd rule out A. But the other two options sound plausible to me.
upvoted 0 times
...
Britt
2 years ago
Hmm, I think the answer is B and D. Micro-segmentation on FGT-2 should prevent direct device-to-device communication, and the firewall policies on FGT-2 would control the intra-VLAN traffic.
upvoted 0 times
Abraham
2 years ago
So, it looks like B and D are the right choices for this question.
upvoted 0 times
...
Almeta
2 years ago
And the firewall policies on FGT-2 would definitely control the intra-VLAN traffic.
upvoted 0 times
...
Maynard
2 years ago
Yes, micro-segmentation should indeed prevent direct device-to-device communication.
upvoted 0 times
...
Maynard
2 years ago
I agree, B and D seem to be the correct answers.
upvoted 0 times
...
...

Save Cancel