A company's guest internet policy, operating in proxy mode, blocks access to Artificial Intelligence Technology sites using FortiGuard. However, a guest user accessed a page in this category using port 8443.
Which configuration changes are required for FortiGate to analyze HTTPS traffic on nonstandard ports like
8443 when full SSL inspection is active in the guest policy?

• A.Add a URL wildcard domain to the website CA certificate and use it in the SSL/SSH Inspection Profile.
• B.In the Protocol Port Mapping section of the SSL/SSH Inspection Profile, enter 443, 8443 to analyze both standard (443) and non-standard (8443) HTTPS ports.
• C.To analyze nonstandard ports in web filter profiles, use TLSv1.3 in the SSL/SSH Inspection Profile.
• D.Administrators can block traffic on nonstandard ports by enabling the SNI check in the SSL/SSH Inspection Profile.

Comment: *

Name: *

Email: *

Verification: *

Which two statements about an auxiliary session are true? (Choose two.)

• A.With the auxiliary session disabled, only auxiliary sessions will be offloaded.
• B.With the auxiliary session setting disabled, for each traffic path, FortiGate will use the same auxiliary session.
• C.With the auxiliary session setting enabled, two sessions will be created in case of routing change.
• D.With the auxiliary session setting enabled, ECMP traffic is accelerated to the NP6 processor.

Comment: *

Name: *

Email: *

Verification: *

View the exhibit, which contains the partial output of the web filtering cache, and then answer the question below.




Which category does www.elitehacking.com belong to?

• A.Business
• B.Information Technology
• C.Peer-to-peer File Sharing
• D.Other Adult Materials

Comment: *

Name: *

Email: *

Verification: *

Refer to the exhibit.

The routing tables of FortiGate_A and FortiGate_B are shown. FortiGate_A and FortiGate_B are in the same autonomous system.
The administrator wants to dynamically add only route172.16.1.248/30on FortiGate_A.
What must the administrator configure?

• A.The prefix 172.16.1.248/30 in the BGP Networks section on FortiGate_B
• B.A BGP route map out for 172.16.1.248/30 on FortiGate_B
• C.Enable Redistribute Connected in the BGP section on FortiGate_B.
• D.A BGP route map in for 172.16.1.248/30 on FortiGate_A

Comment: *

Name: *

Email: *

Verification: *

Refer to the exhibit, which contains the partial output of an OSPF command.

An administrator is checking the OSPF status of a FortiGate device and receives the output shown in the exhibit.
What two conclusions can the administrator draw? (Choose two.)

• A.The FortiGate device is a backup designated router
• B.The FortiGate device is connected to multiple areas
• C.The FortiGate device injects external routing information
• D.The FortiGate device has OSPF ECMP enabled

Comment: *

Name: *

Email: *

Verification: *