Deal of The Day! Hurry Up, Grab the Special Discount - Save 25% - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions
Mail Us support@pass4success.com
Location PL
Mob_nav_barsMENU

Fortinet Exam NSE7_PBC-7.2 Topic 1 Question 33 Discussion

Actual exam question for Fortinet's NSE7_PBC-7.2 exam
Question #: 33
Topic #: 1
[All NSE7_PBC-7.2 Questions]

Refer to the exhibit

A customer has deployed an environment in Amazon Web Services (AWS) and is now trying to send outbound traffic from the Linux1 and Linux2 instances to the internet through the security VPC (virtual private cloud). The FortiGate policies are configured to allow all outbound traffic; however, the traffic is not reaching the FortiGate internal interface. Assume there are no issues with the Transit Gateway (TGW) configuration

Which two settings must the customer add to correct the issue? (Choose two.)

Show Suggested Answer Hide Answer
Suggested Answer: B

For deploying a FortiGate VM using Terraform in AWS, the administrator must use:

B . Use the Name of the key pair.

Terraform and AWS SSH Keys: When deploying instances in AWS using Terraform, it is required to specify the name of the SSH key pair to enable key-based authentication to the instance post-deployment.

Configuration Syntax: The variable keyname within the Terraform configuration should match the exact name of the SSH key pair as it is stored in AWS. This ensures that Terraform can reference the correct key during the deployment process to set up SSH access to the FortiGate VM.

Terraform Variables: The variable 'keyname' block in the Terraform configuration will look for the key pair name as it should be declared in the terraform.tfvars file or passed as a variable during execution. This does not require the key pair's ID or fingerprint, just its name.


by Marguerita at Jan 25, 2025, 07:14 AM

Limited Time Offer

25%

Off

Get Premium NSE7_PBC-7.2 Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

Submit Cancel
Santos
2 days ago
Hold up, why would they need a route to the TGW? That doesn't seem relevant to the issue at hand. I'd go with Option C.
upvoted 0 times
...
Barrett
3 days ago
Hmm, looks like the customer needs to add a route to the FortiGate internal interface from the landing subnets in the security VPC. Option C seems like the way to go.
upvoted 0 times
...
Catherin
14 days ago
I'm not sure about option C. I think option D might also be necessary for all VPCs.
upvoted 0 times
...
Winfred
16 days ago
I agree with you. The traffic route to the Internet Gateway and FortiGate port2 should be added.
upvoted 0 times
...
Ahmed
26 days ago
I think the correct answers are A and C.
upvoted 0 times
...

Save Cancel
az-700  pass4success  az-104  200-301  200-201  cissp  350-401  350-201  350-501  350-601  350-801  350-901  az-720  az-305  pl-300  

Warning: Cannot modify header information - headers already sent by (output started at /pass.php:70) in /pass.php on line 77