nse4_fgt-72 Exam QuestionsBrowse all questions from this exam
Go to Exam

nse4_fgt-72 Exam - Question 54

Refer to the exhibit.

The exhibit shows the output of a diagnose command.

What does the output reveal about the policy route?

Show Answer
Correct Answer: CD

The output reveals that this is an SDWAN rule in policy route. The ID is greater than 65535, and the vwl_service field is present, which are indicators of an SDWAN rule.

Discussion

17 comments
Sign in to comment
[Removed]Option: D
Jun 18, 2023

Answer is D, ref FortiGate 7.2 Infrastructure page 59 In diagnose firewall proute list, if: * ID <= 65535 then its a regular policy route * ID >= 65535 without vwl_service field then it is ISDB route * ID >=65535 with vwl_service field then it is SD-WAN rule.

fc8Option: D
Apr 27, 2023

page 59

sb_alvesOption: D
May 14, 2023

The correct answer is D. This is an SD-WAN rule (ID greater than 65535 and the vwl_service field is present)

TimbalOption: D
Jun 10, 2023

The correct answer is D Examples: Static route with “Internet Services”: id=2113929252 static_route=36 dscp_tag=0xff 0xff flags=0x0 tos=0x00 tos_mask=0x00 protocol=0 sport=0-0 iif=0(any) dport=1-65535 path(1) oif=8(wan2) source wildcard(1): 0.0.0.0/0.0.0.0 destination wildcard(1): 0.0.0.0/0.0.0.0 internet service(1): Adobe-DNS(917507,0,0,0) SDWan rules with Internet Services: id=2134507527(0x7f3a0007) vwl_service=7(SDWanRulewithIS) vwl_mbr_seq=2 dscp_tag=0xff 0xff flags=0x0 tos=0x00 tos_mask=0x00 protocol=0 sport=0-65535 iif=0(any) dport=1-65535 path(1) oif=8(wan2) source(1): 192.168.0.0-192.168.0.255 destination wildcard(1): 0.0.0.0/0.0.0.0 internet service(1): Adobe-Adobe.Experience.Cloud(917640,0,0,0) hit_count=0 last_used=2023-06-10 17:24:19

joeytribOption: D
May 23, 2023

vwl_service is present !

rian00z_Option: D
Aug 19, 2023

Correct answer: D

LeodoroOption: D
Aug 27, 2023

The answer is D. ID >= 65535 and vwl_service tag means SD-WAN.

raydel92Option: D
Sep 13, 2023

D. It is an SDWAN rule in policy route. FortiGate Infrastructure 7.2 Study Guide (p.59): "ISDB routes and SD-WAN rules are assigned an ID higher than 65535. However, SD-WAN rule entries include the vwl_service field, and ISDB route entries don’t." Reference and download study guide: https://ebin.pub/fortinet-fortigate-infrastructure-study-guide-for-fortios-72.html

costavoOption: D
Oct 16, 2023

D. It is an SDWAN rule in policy route.

Grace_ShuOption: A
Apr 9, 2023

answer should be A, there is only 2 oif in this exhibit. SDWAN should have 4 oif

darkstar15Option: D
Aug 9, 2023

es la letra D There are three types of policy routes displayed in the policy route table: regular policy routes, ISDB routes, and SD-WAN rules.

RianOption: D
Sep 27, 2023

I don't know why the suggested answer is C. it should be D: Page 59, slide 55 in the FortiGate Infrastructure 7.1 study guide, clearly states it is a SDWAN and the vwl-service=1.

jfffOption: D
Nov 17, 2023

Answer D See Fortinet Article:https://community.fortinet.com/t5/FortiGate/Technical-Tip-How-to-find-out-the-Policy-Route-Types/ta-p/270555

GeniusAOption: D
Dec 22, 2023

The correct answer is D with ID>65535 and VWL_service field

millerryOption: D
Jan 9, 2024

SDWAN rule (dport=1-65535)

millerry
Jan 9, 2024

and "vwl_service" field is present

Mallu_92Option: D
Mar 18, 2024

Correct answer is D. SDWAN pb-route contains the vwl_service field and ISDB does not.

olsvei
Apr 20, 2024

answer is here: https://community.fortinet.com/t5/FortiGate/Technical-Tip-How-to-find-out-the-Policy-Route-Types/ta-p/270555