Deal of The Day! Hurry Up, Grab the Special Discount - Save 25% - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions
Mail Us support@pass4success.com
Location PL
Mob_nav_barsMENU

Fortinet Exam NSE7_PBC-7.2 Topic 1 Question 1 Discussion

Actual exam question for Fortinet's NSE7_PBC-7.2 exam
Question #: 1
Topic #: 1
[All NSE7_PBC-7.2 Questions]

You are deploying Amazon Web Services (AWS) GuardDuty to monitor malicious or unauthorized behaviors related to AWS resources. You will also use the Fortinet aws-lambda-guardduty script to translate feeds from AWS GuardDuty findings into a list of malicious IP addresses. FortiGate can then consume this list as an external threat feed.

Which Amazon AWS services must you subscribe to in order to use this feature?

Show Suggested Answer Hide Answer
Suggested Answer: B

You must subscribe to GuardDuty, CloudWatch, S3, and DynamoDB. https://docs.fortinet.com/document/fortigate-public-cloud/6.4.0/aws-administration-guide/908646/populating-threat-feeds-with-guardduty


by Bernardo at Nov 27, 2023, 12:26 AM

Limited Time Offer

25%

Off

Get Premium NSE7_PBC-7.2 Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

Submit Cancel
Lynna
24 days ago
Good point! I was just thinking the same thing. Maybe we'd need to set up some S3 buckets or CloudWatch logs to capture the GuardDuty findings and then have the Fortinet script access that data. This seems like it could get a bit complex, but the end result of integrating with FortiGate is pretty useful.
upvoted 0 times
...
Mila
25 days ago
Ah, I see. So we'd need to have both GuardDuty and Lambda enabled in our AWS environment to make this work. I wonder if there are any other services we might need to consider, like AWS CloudWatch or AWS S3 to handle the data flow?
upvoted 0 times
...
Peter
26 days ago
Yeah, I agree. The key services I can think of are AWS GuardDuty and AWS Lambda. GuardDuty is responsible for detecting the malicious or unauthorized behaviors, and the Fortinet script you mentioned is a Lambda function that translates those findings into a threat feed for FortiGate.
upvoted 0 times
...
Melodie
27 days ago
Hmm, this is a tricky one. I think we need to have a good understanding of the AWS services involved in this setup. From the question, it seems like we need to subscribe to AWS GuardDuty and possibly some other services to make this work.
upvoted 0 times
Ashanti
7 days ago
Seems like a comprehensive setup to detect malicious behavior.
upvoted 0 times
...
Dorothy
8 days ago
True, we need all these services to make the setup work.
upvoted 0 times
...
Felton
9 days ago
Don't forget about Amazon CloudWatch.
upvoted 0 times
...
Gearldine
10 days ago
Maybe we need to subscribe to AWS Lambda as well.
upvoted 0 times
...
Lenita
11 days ago
I think we also need to subscribe to Amazon S3.
upvoted 0 times
...
Britt
12 days ago
We need to subscribe to AWS GuardDuty for sure.
upvoted 0 times
...
...

Save Cancel
az-700  pass4success  az-104  200-301  200-201  cissp  350-401  350-201  350-501  350-601  350-801  350-901  az-720  az-305  pl-300  

Warning: Cannot modify header information - headers already sent by (output started at /pass.php:70) in /pass.php on line 77