NSE4_FGT-7.0 Exam QuestionsBrowse all questions from this exam
Go to Exam

NSE4_FGT-7.0 Exam - Question 90

Refer to the exhibit.

Why did FortiGate drop the packet?

Show Answer
Correct Answer: A

The FortiGate dropped the packet because it matched the implicit firewall policy. In FortiGate, 'policy 0' refers to an implicit deny-all policy that drops any traffic that does not explicitly match any configured allow rules. Therefore, the packet did not match any explicit firewall policies and was denied by this implicit default policy leading to the drop.

Discussion

2 comments
Sign in to comment
JT20Option: A
Nov 17, 2024

Policy 0 indicates its the packet was dropped by the default implicit deny

root69
Nov 30, 2024

A: https://www.reddit.com/r/fortinet/comments/lg1hkk/msgdenied_by_forward_policy_check_policy_0/