March Sale Special Limited Time 70% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code: 70percent

Fortinet NSE8_811 Fortinet NSE 8 Written Exam (NSE8_811) Exam Practice Test

Demo: 9 questions
Total 65 questions

Fortinet NSE 8 Written Exam (NSE8_811) Questions and Answers

Question 1

Exhibit

Click the Exhibit button.

The exhibit shows the configuration of a service protection profile (SPP) in a FortiDDoS device.

Which two statements are true about the traffic matching being inspected by this SPP? (Choose two.)

Options:

A.

Traffic that does match any spp policy will not be inspection by this spp.

B.

FortiDDos will not send a SYNACK if a SYN packet is coming from an IP address that is not the legtimate IP (LIP) address table.

C.

FortiDooS will start dropping packets as soon as the traffic executed the configured maintain threshold.

D.

SYN packets with payloads will be drooped.

Question 2

An old router has been replaced by a FortiWAN device. The FortiWAN has inherited the router’s management IP address and now the network administrator needs to remove the old router from the FortiSIEM configuration.

Which two statements are true about this operation? (Choose two.)

Options:

A.

FortiSIEM will discover a new device for the FortiWAN with the same IP.

B.

The old router will be completely deleted from FortiSIEM's CMDB.

C.

FotiSEIM needs a special syslog for FortiWAN.

D.

FortiSIM will move the old router device into the Decommission folder.

Question 3

Click the Exhibit button.

Referring to the exhibit, which two statements are true about local authentication? (Choose two.)

Options:

A.

The FortiGate will allow the TCP connection when a ClientHello message indicating a renegotiation is

received.

B.

The user’s IP address will be blocked 15 seconds after five login failures.

C.

The user will be blocked 15 seconds after five login failures.

D.

The user will need to re-authenticate after five minutes.

Question 4

Click the Exhibit button. An administrator implements a multi-chassis link aggregation (MCLAG) solution using two FortiSwitch 448Ds and one FortiGate 3700D. As describes in the network topology shown in the exhibit, two links are connected to each FortiSwitch. What is requires to implement this solution? (Choose two.)

Options:

A.

Replace the FortiGate as this one does not have an ISF.

B.

Create two separate link aggregated (LAG) interfaces on the FortiGate side for each FortiSwitch.

C.

Add set fortilink-split-interface disable on the FortiLink interface.

D.

An ICL link between both FortiSwitch devices needs to be added.

Question 5

Exhibit

An Administrator reports continuous high CPU utilization on a FortiGate device due to the IPS engine. The exhibit shows the global IPS configuration. Which two configuration actions will reduce the CPU usage? (Choose two.)

Options:

A.

Disable fail open.

B.

Enable intelligent mode.

C.

Change the algorithm to low.

D.

Reduce the number of packets logged.

Question 6

You deploy a FortiGate device in a remote office based on the requirements shown below.

-- Due to company's security policy, management IP of your FortiGate is not allowed to access the Internet.

-- Apply Web Filtering, Antivirus, IPS and Application control to the protected subnet.

-- Be managed by a central FortiManager in the head office.

Which action will help to achieve the requirements?

Options:

A.

Configure a default route and make sure that the FortiGate device can pmg to service fortiguard net.

B.

Configure the FortiGuard override server and use the IP address of the FortiManager

C.

Configure the FortiGuard override server and use the IP address of service, fortiguard net.

D.

Configure FortiGate to use FortiGuard Filtering Port 8888.

Question 7

FortiMail configured with the protected domain "internal lab".

Which two envelopes addresses will need an access control rule to relay e-mail sent for unauthenticated users? (Choose two.)

Options:

A.

MAIL FROM: traming@fortinet com: RCPT TO: student@fortinet com

B.

MAIL FROM student@fortinet com: RCPT TO student@internal.lab

C.

MAIL FROM: trainmg@internallab; RCPT TO student@mternallab

D.

MAIL FROM student@internal lab: RCPT TO student@fortinet.com

Question 8

A company has just rolled out new remote sites and now you need to deploy a single firewall policy to all of these sites to allow Internet access using FortiManager. For this particular firewall policy, the source address object is called LAN, but its value will change according to the site the policy is being installed.

Which statement about creating the object LAN is correct?

Options:

A.

Create a new object called LAN and enable per-device mapping.

B.

Create a new object called LAN and promote it to the global database.

C.

Create a new object called LAN and use it as a variable on a TCL script.

D.

Create a new object called LAN and set meta-fields per remote site.

Question 9

A company has just deployed a new FortiMail in gateway mode. The administrator is asked to strengthen e-mail protection by applying the policies shown below.

- E-mails can only be accepted if a valid e-mail account exists.

- Only authenticated users can send e-mails out

Which two actions will satisfy the requirements? (Choose two. )

Options:

A.

Configure recipient address verification.

B.

Configure inbound recipient policies.

C.

Configure outbound recipient policies.

D.

Configure access control rules.

Demo: 9 questions
Total 65 questions