New Year Sale 2026! Hurry Up, Grab the Special Discount - Save 25% - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions
Mail Us support@pass4success.com
Location US
Mob_nav_barsMENU

Fortinet NSE8_812 Exam - Topic 2 Question 40 Discussion

Actual exam question for Fortinet's NSE8_812 exam
Question #: 40
Topic #: 2
[All NSE8_812 Questions]

Refer to the exhibit showing an SD-WAN configuration.

According to the exhibit, if an internal user pings 10.1.100.2 and 10.1.100.22 from subnet 172.16.205.0/24, which outgoing interfaces will be used?

Show Suggested Answer Hide Answer
Suggested Answer: B, D, E

Bmust be set to enable mode-cfg, which is required for injecting IKE routes on the ADVPN shortcut tunnels.

Dmust be set to enable add-route, which is the command that actually injects the IKE routes.

Emust be set to enable mode-cfg-allow-client-selector, which allows custom phase 2 selectors to be configured.

The other options are incorrect. Option A is incorrect because net-device disable is not required for injecting IKE routes on the ADVPN shortcut tunnels. Option C is incorrect because IKE version 1 is not supported for ADVPN.

References:

Phase 2 selectors and ADVPN shortcut tunnels | FortiGate / FortiOS 7.2.0

Configuring SD-WAN/ADVPN with FortiGate | FortiGate / FortiOS 7.2.0


by Leana at Jan 12, 2025, 04:14 PM

Limited Time Offer

25%

Off

Get Premium NSE8_812 Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

0/2000 characters
Submit Cancel
Alishia
3 months ago
Nah, I think it's port1 and port1.
upvoted 0 times
...
Mozell
3 months ago
Port16 is definitely involved for one of them.
upvoted 0 times
...
Jess
3 months ago
Wait, are we sure about that? Seems off to me.
upvoted 0 times
...
Carli
4 months ago
Definitely agree with that!
upvoted 0 times
...
Hoa
4 months ago
I'm pretty sure it's port1 and port15.
upvoted 0 times
...
Cortney
4 months ago
I think I saw a similar question where the outgoing interfaces were determined by the subnet mask. I want to say it's port1 and port1, but I'm not entirely confident.
upvoted 0 times
...
Thurman
4 months ago
I feel like I should know this, but I keep mixing up the port numbers. Was it port16 and port1 for the first IP?
upvoted 0 times
...
Yolande
4 months ago
This question reminds me of a practice one where we had to identify outgoing interfaces based on IP addresses. I think it might be port1 and port15, but I can't recall the specifics.
upvoted 0 times
...
Maile
5 months ago
I remember something about how SD-WAN routes traffic based on policies, but I'm not sure which ports to choose here.
upvoted 0 times
...
Kenneth
5 months ago
This is a good test of my understanding of SD-WAN routing. I'll carefully consider the options and use my knowledge of subnet routing to arrive at the right answer.
upvoted 0 times
...
Phuong
5 months ago
Hmm, I'm not entirely sure about this one. I'll need to walk through the logic step-by-step to make sure I'm not missing anything.
upvoted 0 times
...
Viki
5 months ago
Okay, I think I've got this. Based on the subnet information and the interfaces shown in the diagram, the correct answer should be port16 and port1.
upvoted 0 times
...
Alexis
5 months ago
I'm a bit confused by the SD-WAN configuration in the exhibit. I'll need to review my notes on SD-WAN principles to make sure I understand how the routing decisions are made in this scenario.
upvoted 0 times
...
Wenona
5 months ago
This looks like a straightforward routing question. I'll need to carefully analyze the network diagram and subnet information to determine the correct outgoing interfaces.
upvoted 0 times
...
Rima
9 months ago
I wonder if the correct answer is 'All of the above' and they're just trying to confuse us. What is this, a Riddler exam?
upvoted 0 times
...
Na
10 months ago
Ah, the joys of networking exams. I feel like I'm playing a game of SD-WAN Tetris here.
upvoted 0 times
Leatha
8 months ago
B) port1 and port1
upvoted 0 times
...
Joanna
8 months ago
I think it's A) port16 and port1.
upvoted 0 times
...
Filiberto
9 months ago
A) port16 and port1
upvoted 0 times
...
...
Rodolfo
10 months ago
I don't know, this exhibit is making my head spin. I'll just close my eyes and randomly pick an answer. Eeny, meeny, miny, moe...
upvoted 0 times
...
Launa
10 months ago
Wait, is this a trick question? Why would it use the same port for both pings? I'm leaning towards option C.
upvoted 0 times
Ceola
8 months ago
User 3: I'm also going with option C. It just seems more logical.
upvoted 0 times
...
Eric
9 months ago
User 2: Yeah, I agree. It wouldn't make sense to use the same port for both pings.
upvoted 0 times
...
Jenelle
9 months ago
User 1: I think it's a trick question too. Option C seems like the right choice.
upvoted 0 times
...
...
Charlene
10 months ago
Hmm, this seems straightforward. I think I'll go with option A, since the exhibit shows the 172.16.205.0/24 subnet is connected to port16 and port1.
upvoted 0 times
Noe
8 months ago
User 3: I think we can confidently select option A based on the information provided.
upvoted 0 times
...
Lisha
8 months ago
User 2: Yeah, the exhibit clearly shows the subnet connected to port16 and port1.
upvoted 0 times
...
Marnie
9 months ago
User 1: I agree, option A seems to be the correct choice.
upvoted 0 times
...
...
Yuette
10 months ago
I'm not sure, but I think the answer might be C) port16 and port15. Can someone explain why it's not the correct answer?
upvoted 0 times
...
Katina
11 months ago
I agree with Francine, because the traffic will go out through port16 to reach 10.1.100.2 and port1 to reach 10.1.100.22.
upvoted 0 times
...
Francine
11 months ago
I think the answer is A) port16 and port1.
upvoted 0 times
...

Save Cancel