Fortinet Exam NSE7_ZTA-7.2 Topic 5 Question 21 Discussion

Actual exam question for Fortinet's NSE7_ZTA-7.2 exam

Question #: 21
Topic #: 5

An administrator wants to prevent direct host-to-host communication at layer 2 and use only FortiGate to inspect all the VLAN traffic What three things must the administrator configure on FortiGate to allow traffic between the hosts? (Choose three.)

AConfigure proxy ARP to allow traffic

BBlock intra-VLAN traffic in the VLAN interface settings

CAdd the VLAN interface to a software switch

DConfigure static routes to allow subnets

EConfigure a firewall policy to allow the desired traffic between hosts

Show Suggested Answer

Suggested Answer: A

In the scenario where FortiNAC has alarm mappings configured for MDM (Mobile Device Management) compliance failure and FortiClient EMS (Endpoint Management System) is integrated as an MDM connector, the typical response when an endpoint is quarantined by FortiClient EMS is to isolate the host in the registration VLAN. This action is consistent with FortiNAC's approach to network access control, focusing on ensuring network security and compliance. By moving the non-compliant or quarantined host to a registration VLAN, FortiNAC effectively segregates it from the rest of the network, mitigating potential risks while allowing for further investigation or remediation steps. Reference: FortiNAC documentation, MDM Compliance and Response Actions.

by Tegan at Sep 16, 2024, 07:03 PM

Limited Time Offer

25%

Off

Get Premium NSE7_ZTA-7.2 Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

Submit Cancel

Herschel

1 months ago

I bet the admin is just trying to justify their FortiGate purchase. 'Oh, you need this expensive firewall to make your network work. Trust me, it's worth it!'

upvoted 0 times