Free Fortinet FCSS_EFW_AD-7.6 Exam Questions

Question 1

Refer to the exhibit, which shows a physical topology and a traffic log.The administrator is checking on FortiAnalyzer traffic from the device with IP address 10.1.10.1, located behind the FortiGate ISFW device. The firewall policy in on the ISFW device does not have UTM enabled and the administrator is surprised to see a log with the action Malware, as shown in the exhibit. What are the two reasons FortiAnalyzer would display this log? (Choose two.)

A : Security rating is enabled in ISFW.

B : ISFW is in a Security Fabric environment.

C : ISFW is not connected to FortiAnalyzer and must go through NGFW-1.

D : The firewall policy in NGFW-1 has UTM enabled.

Answer: B,D

Question 2

Refer to the exhibit, which shows a partial enterprise network.An administrator would like the area 0.0.0.0 to detect the external network. What must the administrator configure?

A : Enable RIP redistribution on FortiGate B.

B : Configure a distribute-route-map-in on FortiGate B.

C : Configure a virtual link between FortiGate A and B.

D : Set the area 0.0.0.l type to stub on FortiGate A and B.

Answer: A

Question 3

Refer to the exhibit, which shows a physical topology and a traffic log.The administrator is checking on FortiAnalyzer traffic from the device with IP address 10.1.10.1, located behind the FortiGate ISFW device. The firewall policy in on the ISFW device does not have UTM enabled and the administrator is surprised to see a log with the action Malware, as shown in the exhibit. What are the two reasons FortiAnalyzer would display this log? (Choose two.)

A : Security rating is enabled in ISFW.

B : ISFW is in a Security Fabric environment.

C : ISFW is not connected to FortiAnalyzer and must go through NGFW-1.

D : The firewall policy in NGFW-1 has UTM enabled.

Answer: B,D

Question 4

Refer to the exhibit, which shows a physical topology and a traffic log.The administrator is checking on FortiAnalyzer traffic from the device with IP address 10.1.10.1, located behind the FortiGate ISFW device. The firewall policy in on the ISFW device does not have UTM enabled and the administrator is surprised to see a log with the action Malware, as shown in the exhibit. What are the two reasons FortiAnalyzer would display this log? (Choose two.)

A : Security rating is enabled in ISFW.

B : ISFW is in a Security Fabric environment.

C : ISFW is not connected to FortiAnalyzer and must go through NGFW-1.

D : The firewall policy in NGFW-1 has UTM enabled.

Answer: B,D

Question 5

Refer to the exhibit, which shows a physical topology and a traffic log.The administrator is checking on FortiAnalyzer traffic from the device with IP address 10.1.10.1, located behind the FortiGate ISFW device. The firewall policy in on the ISFW device does not have UTM enabled and the administrator is surprised to see a log with the action Malware, as shown in the exhibit. What are the two reasons FortiAnalyzer would display this log? (Choose two.)

A : Security rating is enabled in ISFW.

B : ISFW is in a Security Fabric environment.

C : ISFW is not connected to FortiAnalyzer and must go through NGFW-1.

D : The firewall policy in NGFW-1 has UTM enabled.

Answer: B,D