最新的 Fortinet Network Security Expert NSE8_811 免費考試真題:

1. A customer has a SCADA environmental control device that is triggering a false-positive IPS alert whenever the Web GUI of the device is accessed. You cannot create a functional custom IPS filter to exempt this behavior, and it appears that the device is so old that it does not have HTTPS support. You need to prevent the false positive IPS alerts from occurring.
In this scenario, which two actions will accomplish this task? (Choose two.)

A) Change the relevant firewall policies to use SSL certificate-inspection instead of SSL deep-inspection.
B) Reconfigure the FortiGate to operate in proxy-based inspection mode instead of flow-based.
C) Create a very specific firewall policy for that device IP address which does not perform IPS scanning.
D) Create a URL filter with the Exempt action for that device IP address.

2. Click the Exhibit button.

You configured an IPsec tunnel to a branch office. Now you want to make sure that the encryption of the tunnel is offloaded to hardware.
Referring to the exhibit, which statement is true?

A) Traffic is not offloaded.
B) Outgoing traffic is offloaded: incoming traffic not offloaded.
C) Outgoing traffic is offloaded, you cannot determine if incoming traffic is offloaded at this time.
D) Incoming and outgoing traffic is offloaded

3. Click the Exhibit button.
You configured AV and Web filtering for your outgoing Internet connections. You later noticed that not all Web sessions are being inspected and you start troubleshooting the problem.
Referring to the exhibit, what would cause this problem?

A) Web filtering is not licensed, therefore no inspection occurs.
B) The Web session is using QUIC which a not inspected by the FortiGate
C) The SSL inspection options are not set to inspection
D) These are problem with the connection to the Web filter servers, therefore the Web session cannot be categorized.

4. Refer to the exhibit.

The exhibit shows a full-mesh topology between FortiGate and FortiSwitch devices. To deploy this configuration, two requirements must be met:
* 20 Gbps full duplex connectivity is available between each FortiGate and the FortiSwitch devices
* The FortiGate HA must be in AP mode
Referring to the exhibit, what are two actions that will fulfill the requirements? (Choose two.)

A) Configure the master FortiGate with one LAG and FortiLink split interface disabled on ports connected to cables A and C and make sure the same ports are used for cables B and D on the slave.
B) Configure both FortiSwitch devices as peers with ISL over cable E, create one MCLAG on ports connected to cables A and C, and create another MCLAG on ports connected to cables B and D.
C) Configure the master FortiGate with one LAG and FortiLink split interface enabled on ports connected to cables A and C and make sure the same ports are used for cables B and D on the slave.
D) Configure both FortiSwitch devices as peers with ICL over cable E, create one MCLAG on ports connected to cables A and C, and create another MCLAG on ports connected to cables B and D.

5. Click the Exhibit button.
Referring to the exhibit, what will happen if FortiSandbox categorizes an e-mail attachment submitted by FortiMail as a high risk?

A) The high-risk tile will go to the system quarantine.
B) The high-risk file will be discarded by attachment analysis.
C) The high-risk file will be received by the recipient.
D) The high-risk file will be discarded by malware/virus outbreak protection.

問題與答案：