Which of the following statements describe WMI polling mode for the FSSO collector agent? (Choose two.)

A. The NetSessionEnum function is used to track user logoffs.

B. WMI polling can increase bandwidth usage in large networks.

C. The collector agent uses a Windows API to query DCs for user logins.

D. The collector agent do not need to search any security event logs.

Which statements about DNS filter profiles are true? (Choose two.)

A. They can inspect HTTP traffic.

B. They can redirect blocked requests to a specific portal.

C. They can block DNS requests to known botnet command and control servers.

D. They must be applied in firewall policies with SSL inspection enabled.

You are configuring the root FortiGate to implement the security fabric. You are configuring port10 to communicate with a downstream FortiGate. View the default Edit Interface in the exhibit below: When configuring the root FortiGate to communicate with a downstream FortiGate, which settings are required to be configured? (Choose two.)

A. Device detection enabled.

B. Administrative Access: FortiTelemetry.

C. IP/Network Mask.

D. Role: Security Fabric.

Examine this FortiGate configuration: How does the FortiGate handle web proxy traffic coming from the IP address 10.2.1.200 that requires authorization?

A. It always authorizes the traffic without requiring authentication.

B. It drops the traffic.

C. It authenticates the traffic using the authentication scheme SCHEME2.

D. It authenticates the traffic using the authentication scheme SCHEME1.

Examine the routing database shown in the exhibit, and then answer the following question:

Which of the following statements are correct? (Choose two.)

A. The port3 default route has the highest distance.

B. The port3 default route has the lowest metric.

C. There will be eight routes active in the routing table.

D. The port1 and port2 default routes are active in the routing table.

When using WPAD DNS method, which FQDN format do browsers use to query the DNS server?

A. srv_proxy./wpad.dat

B. srv_tcp.wpad.

C. wpad.

D. proxy..wpad

Examine the IPS sensor configuration shown in the exhibit, and then answer the question below.

An administrator has configured the WINDOS_SERVERS IPS sensor in an attempt to determine

whether the influx of HTTPS traffic is an attack attempt or not. After applying the IPS sensor, FortiGate is

still not generating any IPS logs for the HTTPS traffic.

What is a possible reason for this?

A. The IPS filter is missing the Protocol: HTTPS option.

B. The HTTPS signatures have not been added to the sensor.

C. A DoS policy should be used, instead of an IPS sensor.

D. The firewall policy is not using a full SSL inspection profile.

An administrator wants to configure a FortiGate as a DNS server. FotiGate must use a DNS database first, and then relay all irresolvable queries to an external DNS server. Which of the following DNS methods must you use?

A. Recursive

B. Non-recursive

C. Forward to primary and secondary DNS

D. Forward to system DNS

Which statement about the IP authentication header (AH) used by IPsec is true?

A. AH does not provide any data integrity or encryption.

B. AH does not support perfect forward secrecy.

C. AH provides data integrity bur no encryption.

D. AH provides strong data integrity but weak encryption.

Which of the following statements about central NAT are true? (Choose two.)

A. IP tool references must be removed from existing firewall policies before enabling central NAT.

B. Central NAT can be enabled or disabled from the CLI only.

C. Source NAT, using central NAT does not require a central SNAT policy.

D. Destination NAT, using central NAT, requires a VIP object as the destination address in a firewall.