Examine the IPS sensor and DoS policy configuration shown in the exhibit, then answer the question below.

When detecting attacks, which anomaly, signature, or filter will FortiGate evaluate first?

• A.SMTP.Login.Brute.Force
• B.IMAP.Login.brute.Force
• C.ip_src_session
• D.Location: server Protocol: SMTP

Comment: *

Name: *

Email: *

Verification: *

What are two benefits of flow-based inspection compared to proxy-based inspection? (Choose two.)

• A.FortiGate uses fewer resources.
• B.FortiGate performs a more exhaustive inspection on traffic.
• C.FortiGate adds less latency to traffic.
• D.FortiGate allocates two sessions per connection.

Comment: *

Name: *

Email: *

Verification: *

An employee needs to connect to the office through a high-latency internet connection.
Which SSL VPN setting should the administrator adjust to prevent SSL VPN negotiation failure?

• A.SSL VPN dtls-hello-timeout
• B.SSL VPN session-ttl
• C.SSL VPN idle-timeout
• D.SSL VPN login-timeout

Comment: *

Name: *

Email: *

Verification: *

A network administrator is configuring an IPsec VPN tunnel for a sales employee travelling abroad.
Which IPsec Wizard template must the administrator apply?

• A.Remote Access
• B.Site to Site
• C.Dial up User
• D.iHub-and-Spoke

Comment: *

Name: *

Email: *

Verification: *

Why does FortiGate keep TCP sessions in the session table for some seconds even after both sides (client and server) have terminated the session?

• A.To remove the NAT operation.
• B.To generate logs
• C.To finish any inspection operations.
• D.To allow for out-of-order packets that could arrive after the FIN/ACK packets.

Comment: *

Name: *

Email: *

Verification: *