更多"[单选题]Examine the IPS sensor configu"的相关试题:
[单选题]
Examine the IPS sensor and DoS policy configuration shown in the exhibit then Answer the question below.
When detecting attacks which anomaly signature or filter will FortiGate evaluate first?
A. SMTP.Login.Brute.Force
B. IMAP.Login.brute.Force
C. ip_src_session
D. Location: server Protocol: SMTP
[单选题]
Examine this FortiGate configuration:
Examine the output of the following debug command:
Based on the diagnostic outputs above how is the FortiGate handling the traffic for new sessions that require inspection?
A. It is allowed but with no inspection
B. It is allowed and inspected as long as the inspection is flow based
C. It is dropped.
D. It is allowed and inspected as long as the only inspection required is antivirus.
[单选题]
Examine the network diagram shown in the exhibit then Answer the following question:
Which one of the following routes is the best candidate route for FGT1 to route traffic from the Workstation to the Web server?
A. 172.16.0.0/16 1.[50/0] via 10.4.200.2 port2 1.[5/0]
B. 0.0.0.0/0 1.[20/0] via 10.4.200.2 port2
C. 10.4.200.0/30 is directly connected port2
D. 172.16.32.0/24 is directly connected port1
[单选题]
Examine the two static routes shown in the exhibit then Answer the following question.
Which of the following is the expected FortiGate behavior regarding these two routes to the same
Destination?
A. FortiGate will load balance all traffic across both routes.
B. FortiGate will use the port1 route as the primary candidate.
C. FortiGate will route twice as much traffic to the port2 route
D. FortiGate will only actuate the port1 route in the routing table
[单选题]
Examine this FortiGate configuration:How does the FortiGate handle web proxy traffic coming from the IP address 10.2.1.200 that requires
Authorization?
A. It always authorizes the traffic without requiring authentication.
B. It drops the traffic.
C. It authenticates the traffic using the authentication scheme SCHEME2.
D. It authenticates the traffic using the authentication scheme SCHEME1.
[多选题]
Examine this PAC file configuration.
Which of the following statements are true? (Choose two.)
A. Browsers can be configured to retrieve this PAC file from the FortiGate.
B. Any web request to the 172.25.120.0/24 subnet is allowed to bypass the proxy.
C. All requests not made to Fortinet.com or the 172.25.120.0/24 subnet have to go through altproxy.corp.com: 8060.
D. Any web request fortinet.com is allowed to bypass the proxy.
[单选题] sensor保存期限:从sensor生产日期起。( )
A.一年
B.二年
C.三年
D.四年
[判断题]IPS与IDS的职责都是保证网络安全,IPS注重接入控制,而IDS则进行网络监测。
A.正确
B.错误
[单选题]
Examine the exhibit which contains a virtual IP and firewall policy configuration.
The WAN (port1) interface has the IP address 10.200.1.1/24. The LAN (port2) interface has the IP address 10.0.1.254/24.
The first firewall policy has NAT enabled on the outgoing interface address. The second firewall policy is configured with a VIP as the destination address.
Which IP address will be used to source NAT the Internet traffic coming from a workstation with the IP address 10.0.1.10/24?
A. 10.200.1.10
B. Any available IP address in the WAN (port1) subnet 10.200.1.0/24
C. 10.200.1.1
D. 10.0.1.254
[单选题]
Examine the following web filtering log.
Which statement about the log message is true?
A. The action for the category Games is set to block.
B. The usage quota for the IP address 10.0.1.10 has expired
C. The name of the applied web filter profile is default.
D. The web site miniclip.com matches a static URL filter whose action is set to Warning.
[单选题]
Refer to the exhibit.
Examine the intrusion prevention system (IPS) diagnostic command.
Which statement is correct If option 5 was used with the IPS diagnostic command and the outcome was a decrease in the CPU usage?
A. The IPS engine was inspecting high volume of traffic.
B. The IPS engine was unable to prevent an intrusion attack.
C. The IPS engine was blocking all traffic.
D. The IPS engine will continue to run in a normal state.
[单选题]
Examine this output from a debug flow:
Why did the FortiGate drop the packet?
A. The next-hop IP address is unreachable.
B. It failed the RPF check.
C. It matched an explicitly configured firewall policy with the action DENY.
D. It matched the default implicit firewall policy.
[单选题]polling sensor默认运行间隔为?
A.15s
B.5s
C.30s
D.60s
[多选题]
Which two configuration settings are synchronized when FortiGate devices are in an active- active HA cluster? (Choose two.)
A. FortiGuard web filter cache
B. FortiGate hostname
C. NTP
D. DNS
[单选题]
NGFW mode allows policy-based configuration for most inspection rules. Which security profile's configuration does not change when you enable policy-based inspection?
A. Web filtering
B. Antivirus
C. Web proxy
D. Application control
[单选题]IPS和IDS都是主动防御系统。
A.A、正确
B.B、错误
[单选题]"NEWS和IPS评分的区别是:( )
A.NEWS是单参数型评分系统;参数固定;IPS是总分型评分系统,参数自定义
B.NEWS是单参数型评分系统;IPS是总分型评分系统,两者参数相同,均为固定参数
C.NEWS是总分型评分系统,参数固定;IPS是单参数型评分系统,参数自定义
D.NEWS是总分数型评分系统;IPS是单参数型评分系统,两者参数相同,均为固定参数
[判断题]PRACH Configuration Index参数指示了每一种Preamble Format对应的PRACH允许发送的无线帧号和子帧号配置,可发送的无线帧号和子帧号越多,则可接入的负荷越高
A.正确
B.错误
[单选题]IPS设备旁路接入网络时仍然能够阻断网络攻击。
A.A、正确
B.B、错误
