Fortinet Exam NSE8_812 Topic 1 Question 21 Discussion

Actual exam question for Fortinet's NSE8_812 exam

Question #: 21
Topic #: 1

Refer to the exhibits.

A FortiGate cluster (CL-1) protects a data center hosting multiple web applications. A pair of FortiADC devices are already configured for SSL decryption (FAD-1), and re-encryption (FAD-2). CL-1 must accept unencrypted traffic from FAD-1, perform application detection on the plain-text traffic, and forward the inspected traffic to FAD-2.

The SSL-Offload-App-Detect application list and SSL-Offload protocol options profile are applied to the firewall policy handling the web application traffic on CL-1.

Given this scenario, which two configuration tasks must the administrator perform on CL-1? (Choose two.)

AOption A

BOption B

COption C

DOption D

Show Suggested Answer

Suggested Answer: C

To control multicast traffic passing through a FortiGate configured in transparent mode, you can use multicast policies. Multicast policies allow you to filter multicast traffic based on source and destination addresses, protocols, and interfaces. You can also apply security profiles to scan multicast traffic for threats and violations. References: https://docs.fortinet.com/document/fortigate/6.2.14/cookbook/968606/configuring-multicast-forwarding

by Devora at Apr 27, 2024, 04:59 PM

Limited Time Offer

25%

Off

Get Premium NSE8_812 Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

Submit Cancel

Cecily

1 months ago

Haha, I bet the person who wrote this question had a field day coming up with all those options. Time to put on my thinking cap!

upvoted 0 times

...

Tracey

1 months ago

I bet the developers at Fortinet have a good sense of humor. I wonder if they'll include any jokes in the exam questions.

upvoted 0 times

...

Ashley

1 months ago

Wait, are we supposed to do SSL decryption and re-encryption on the FortiGate cluster too? This is getting complex!

upvoted 0 times

Nichelle

8 days ago

I think we also need to apply the SSL-Offload-App-Detect application list and SSL-Offload protocol options profile to the firewall policy.

upvoted 0 times

...

Geoffrey

14 days ago

Yes, we need to configure SSL decryption and re-encryption on the FortiGate cluster as well.

upvoted 0 times

...

Sommer

1 months ago

Hmm, this is a tricky one. I'm going to have to think it through carefully before deciding.

upvoted 0 times

Rolf

User 2: Yes, I'm still trying to figure out which tasks need to be performed on CL-1.

upvoted 0 times

...

Jesusa

4 days ago

User 1: Have you looked at the options yet?

upvoted 0 times

...

Malcolm

2 months ago

Got it. So, we need to perform both tasks to ensure proper handling of web application traffic.

upvoted 0 times

...

Marleen

2 months ago

Yes, that's one of the tasks. We also need to configure SSL-Offload protocol options profile on CL-1.

upvoted 0 times

...

Jesus

2 months ago

This question is really testing our knowledge of FortiGate configuration. I think the correct answers are Option A and Option B.

upvoted 0 times

Weldon

1 months ago

Yes, we need to make sure to configure the SSL-Offload-App-Detect application list and SSL-Offload protocol options profile on CL-1.

upvoted 0 times

...

Danica

1 months ago

I agree, Option A and Option B seem to be the correct configuration tasks for CL-1.

upvoted 0 times

...

Malcolm

2 months ago

I think we need to configure SSL-Offload-App-Detect application list on CL-1.

upvoted 0 times

...

Virgina

2 months ago

Got it. So, we need to perform both tasks to ensure proper handling of web application traffic.

upvoted 0 times

...

Ocie

2 months ago

Yes, that's one of the tasks. We also need to configure SSL-Offload protocol options profile on CL-1.

upvoted 0 times

...

Virgina

3 months ago

I think we need to configure SSL-Offload-App-Detect application list on CL-1.

upvoted 0 times

...