Refer to the exhibit, which shows two configured FortiGate devices and peering over FGSP.

The main link directly connects the two FortiGate devices and is configured using the set session-syn-dev <interface> command.
What is the primary reason to configure the main link?

• A.To have both sessions and configuration synchronization in layer 2
• B.To load balance both sessions and configuration synchronization between layer 2 and 3
• C.To have only configuration synchronization in layer 3
• D.To have both sessions and configuration synchronization in layer 3

Comment: *

Name: *

Email: *

Verification: *

Exhibit.

Refer to the exhibit, which shows a partial touting table
What two concisions can you draw from the corresponding FortiGate configuration? (Choose two.)

• A.IPSec Tunnel aggregation is configured
• B.net-device is enabled in the tunnel IPSec phase 1 configuration
• C.OSPI is configured to run over IPSec.
• D.add-route is disabled in the tunnel IPSec phase 1 configuration.

Comment: *

Name: *

Email: *

Verification: *

Refer to the exhibit, which shows the output of a BGP summary.

What two conclusions can you draw from this BGP summary? (Choose two.)

• A.External BGP (EBGP) exchanges routing information.
• B.The BGP session with peer 10. 127. 0. 75 is established.
• C.The router 100. 64. 3. 1 has the parameter bfd set to enable.
• D.The neighbors displayed are linked to a local router with the neighbor-range set to a value of 4.

Comment: *

Name: *

Email: *

Verification: *

Which two statements about the BFD parameter in BGP are true? (Choose two.)

• A.It allows failure detection in less than one second.
• B.The two routers must be connected to the same subnet.
• C.It is supported for neighbors over multiple hops.
• D.It detects only two-way failures.

Comment: *

Name: *

Email: *

Verification: *

Which two statements about IKE version 2 fragmentation are true? (Choose two.)

• A.Only some IKE version 2 packets are considered fragmentable.
• B.The reassembly timeout default value is 30 seconds.
• C.It is performed at the IP layer.
• D.The maximum number of IKE version 2 fragments is 128.

Comment: *

Name: *

Email: *

Verification: *