Refer to the exhibit.

The exhibit shows the FortiGuard Category Based Filter section of a corporate web filter profile.
An administrator must block access to download.com, which belongs to the Freeware and Software Downloads category. The administrator must also allow other websites in the same category.
What are two solutions for satisfying the requirement? (Choose two.)

• A.Configure a separate firewall policy with action Deny and an FQDN address object for *. download, com as destination address.
• B.Set the Freeware and Software Downloads category Action to Warning
• C.Configure a web override rating for download, com and select Malicious Websites as the subcategory.
• D.Configure a static URL filter entry for download, com with Type and Action set to Wildcard and Block, respectively.

Comment: *

Name: *

Email: *

Verification: *

Refer to the exhibit to view the firewall policy.

Why would the firewall policy not block a well-known virus, for example eicar?

• A.The firewall policy does not apply deep content inspection.
• B.Web filter is not enabled on the firewall policy to complement the antivirus profile.
• C.The action on the firewall policy is not set to deny.
• D.The firewall policy is not configured in proxy-based inspection mode.

Comment: *

Name: *

Email: *

Verification: *

An administrator has configured the following settings:

What are the two results of this configuration? (Choose two.)

• A.Device detection on all interfaces is enforced for 30 minutes
• B.Denied users are blocked for 30 minutes
• C.A session for denied traffic is created
• D.The number of logs generated by denied traffic is reduced

Comment: *

Name: *

Email: *

Verification: *

What are two features of the NGFW profile-based mode? (Choose two.)

• A.NGFW profile-based mode can only be applied globally and not on individual VDOMs.
• B.NGFW profile-based mode must require the use of central source NAT policy
• C.NGFW profile-based mode policies support both flow inspection and proxy inspection.
• D.NGFW profile-based mode supports applying applications and web filtering profiles in a firewall policy.

Comment: *

Name: *

Email: *

Verification: *

Which two statements are correct about SLA targets? (Choose two.)

• A.You can configure only two SLA targets per one Performance SLA.
• B.SLA targets are optional.
• C.SLA targets are required for SD-WAN rules with a Best Quality strategy.
• D.SLA targets are used only when referenced by an SD-WAN rule.

Comment: *

Name: *

Email: *

Verification: *