Fortinet NSE7_EFW-7.2 Free Practice Exam & Test Training

Question 1 ( Exam A )

Refer to the exhibit, which contains a TCL script configuration on FortiManager.

An administrator has configured the TCL script on FortiManager, but the TCL script failed to apply any changes to the managed device after being run.
Why did the TCL script fail to make any changes to the managed device?

A. The TCL procedure run_cmd has not been created.
B. The TCL script must start with #include.
C. There is no corresponding #! to signify the end of the script.
D. The TCL procedure lacks the required loop statements to iterate through the changes.

Answer : A

Question 2 ( Exam A )

You want to improve reliability over a lossy IPSec tunnel.
Which combination of IPSec phase 1 parameters should you configure?

A. fec-ingress and fsc-egrsss
B. dpd and dpd-retryinterval
C. fragmentation and fragmentation-mtu
D. keepalive and keylive

Answer : B

Question 3 ( Exam A )

How are bulk configuration changes made using FortiManager CLI scripts? (Choose two.)

A. When run on the Device Database, changes are applied directly to the managed FortiGate device.
B. When run on the Remote FortiGate directly, administrators do not have the option to review the changes prior to installation.
C. When run on the All FortiGate in ADOM, changes are automatically installed without the creation of a new revision history.
D. When run on the Policy Package, ADOM database, you must use the installation wizard to apply the changes to the managed FortiGate device.

Answer : BD

Question 4 ( Exam A )

Refer to the exhibit, which contains a partial configuration of the global system.

What can you conclude from this output?

A. Only NPs are disabled
B. Only CPs are disabled
C. NPs and CPs are enabled
D. NPs and CPs are disabled

Answer : D

Question 5 ( Exam A )

Refer to the exhibits, which show the configurations of two address objects from the same FortiGate.

Engineering address object -

Finance address object -

Why can you modify the Engineering address object, but not the Finance address object?

A. You have read-only access.
B. Another user is editing the Finance address object in workspace mode.
C. FortiGate joined the Security Fabric and the Finance address object was configured on the root FortiGate.
D. FortiGate is registered on FortiManager.