Back

Practice Free FCSS_NST_SE-7.4 Exam Online Questions

Question #11

Exhibit.

Refer to the exhibit, which contains partial output from an IKE real-time debug.

Which two statements about this debug output are correct? (Choose two.)

  • A . Perfect Forward Secrecy (PFS) is enabled in the configuration.
  • B . The local gateway IP address is 10.0.0.1.
  • C . It shows a phase 2 negotiation.
  • D . The initiator provided remote as its IPsec peer ID.

Reveal Solution Hide Solution

Correct Answer: C, D
Question #12

An administrator wants to capture encrypted phase 2 traffic between two FotiGate devices using the built-in sniffer.

If the administrator knows that there Is no NAT device located between both FortiGate devices, which command should the administrator run?

  • A . diagnose sniffer packet any ‘udp port 500’
  • B . diagnose sniffer packet any ‘lp proto 50’
  • C . diagnose sniffer packet any ‘udp port 4500’
  • D . diagnose sniffer packet any ‘ah’

Reveal Solution Hide Solution

Correct Answer: B