Deal of The Day! Hurry Up, Grab the Special Discount - Save 25% - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions
Mail Us support@pass4success.com
Location PL
Mob_nav_barsMENU

Fortinet Exam NSE6_FSW-7.2 Topic 5 Question 29 Discussion

Actual exam question for Fortinet's NSE6_FSW-7.2 exam
Question #: 29
Topic #: 5
[All NSE6_FSW-7.2 Questions]

How does FortiSwitch perform actions on ingress and egress traffic using the access control list (ACL)?

Show Suggested Answer Hide Answer
Suggested Answer: D

In FortiSwitch, Access Control Lists (ACLs) are used to enforce security rules on both ingress and egress traffic:

ACL Evaluation Order (D):

Operational Function: FortiSwitch processes ACL entries from top to bottom, similar to how firewall rules are processed. The first match in the ACL determines the action taken on the packet, whether to allow or deny it, making the order of rules critical.

Configuration Advice: Careful planning of the order of ACL rules is necessary to ensure that more specific rules precede more general ones to avoid unintentional access or blocks.

Reference: For a comprehensive guide on configuring ACLs in FortiSwitch, consult the FortiSwitch security settings documentation available on: Fortinet Product Documentation


by Arlyne at Apr 06, 2025, 12:08 PM

Limited Time Offer

25%

Off

Get Premium NSE6_FSW-7.2 Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

Submit Cancel
Dorcas
1 months ago
C is just a trap answer. Classifiers can match traffic based on more than just VLAN ID, come on now.
upvoted 0 times
...
Glendora
1 months ago
Haha, A is a good one! Only the high-end models support ACL? Guess the budget models are for the broke network admins.
upvoted 0 times
Phuong
7 days ago
C) Classifiers enable matching traffic based only on the VLAN ID.
upvoted 0 times
...
Roselle
9 days ago
C) Classifiers enable matching traffic based only on the VLAN ID.
upvoted 0 times
...
Maddie
11 days ago
B) ACL can be used only at the prelookup stage in the traffic processing pipeline.
upvoted 0 times
...
Cordie
13 days ago
A) Only high-end FortiSwitch models support ACL.
upvoted 0 times
...
Josefa
23 days ago
B) ACL can be used only at the prelookup stage in the traffic processing pipeline.
upvoted 0 times
...
Nobuko
30 days ago
A) Only high-end FortiSwitch models support ACL.
upvoted 0 times
...
...
Sherita
2 months ago
Yes, that's correct. ACL can be used at the prelookup stage in the traffic processing pipeline.
upvoted 0 times
...
Arlean
2 months ago
B is the correct answer. ACL can only be used at the prelookup stage, not throughout the entire traffic processing pipeline.
upvoted 0 times
Norah
17 days ago
Got it. Thanks for clarifying!
upvoted 0 times
...
Gearldine
1 months ago
That's right. It's only at the prelookup stage.
upvoted 0 times
...
Gaston
1 months ago
So, ACL is not applied to all stages of traffic processing?
upvoted 0 times
...
Karl
1 months ago
B is the correct answer. ACL can only be used at the prelookup stage, not throughout the entire traffic processing pipeline.
upvoted 0 times
...
...
Beckie
2 months ago
D seems right. The FortiSwitch checks the ACL policies from top to bottom, right? That's how it performs actions on the traffic.
upvoted 0 times
Dan
28 days ago
Exactly, the order of the ACL policies is important for how FortiSwitch performs actions on traffic.
upvoted 0 times
...
Vonda
1 months ago
Yes, that's correct. FortiSwitch checks ACL policies from top to bottom.
upvoted 0 times
...
...
Linwood
2 months ago
I believe high-end FortiSwitch models support ACL.
upvoted 0 times
...
Sherita
2 months ago
I think FortiSwitch performs actions on ingress and egress traffic using ACL.
upvoted 0 times
...

Save Cancel
az-700  pass4success  az-104  200-301  200-201  cissp  350-401  350-201  350-501  350-601  350-801  350-901  az-720  az-305  pl-300  

Warning: Cannot modify header information - headers already sent by (output started at /pass.php:70) in /pass.php on line 77