NSE7_EFW-7.0 Exam QuestionsBrowse all questions from this exam
Go to Exam

NSE7_EFW-7.0 Exam - Question 43

Refer to the exhibit, which shows the output of diagnose sys session list.

If the HA ID for the primary device is 0, what will happen if the primary fails and the secondary becomes the primary?

Show Answer
Correct Answer: A

The session is synchronized between the primary and secondary devices, as indicated by the state 'may_dirty synced none app_ntf' in the session list. Because the session is synchronized, traffic for this session continues to be permitted on the new primary device after failover, without requiring the client to restart the session with the server.

Discussion

10 comments
Sign in to comment
NZhang
Mar 7, 2024

A is correct, as the session is syncd

BoostBorisOption: A
Apr 2, 2024

flag = synced https://community.fortinet.com/t5/FortiGate/Technical-Note-How-to-see-if-a-session-is-synced-in-HA/ta-p/194185

Seph1Option: A
Mar 18, 2024

A - The session is synced.

certifi46Option: A
May 10, 2024

synced

Georgezhong
Jul 25, 2024

Enterprise_Firewall_7.0_Study_Guide-Online.pdf page 226

jjejjeOption: B
Jan 31, 2024

answer

Bsdx
Mar 9, 2024

I dont see the "local" keyword within the session state, which makes me wonder if is really app control enforced

cabeza
Mar 10, 2024

the app_list field marks the application, but even so that answer still doesnt make sense, app control or not the session is flowbased and syncd so it will be there on the secondary without needing to "reevaluate"

BoostBoris
Apr 2, 2024

app=0, doesn't it mean that application control is off?

cabeza
Mar 10, 2024

the app_list field marks the application, but even so that answer still doesnt make sense, app control or not the session is flowbased and syncd so it will be there on the secondary without needing to "reevaluate"

BoostBoris
Apr 2, 2024

app=0, doesn't it mean that application control is off?

cabeza
Mar 6, 2024

A - flow based and sync'd

MI098
May 20, 2024

A Enterprise_Firewall_7.0_Study_Guide-Online.pdf page 266

theripper666
May 23, 2024

page 226*

nse_studentOption: A
Jun 21, 2024

A is correct!

ay_dos
Nov 29, 2024

Answer is C. A. wrong app_ntr means the session is not allowing traffic - is it blocking the traffic B. Wrong No indication of Application control c. Correct - based on elimination, and May_dirty means change in route required session to be reevaluated D. There is no secondary, Primary failed. And session is already syned to the new Primary.