nse4_fgt-72 Exam - Question 94

Question

Refer to the exhibit. Based on the raw log, what can you conclude from the output? (Choose two. ).

Examice · Accepted Answer

The output log indicates that traffic belongs to the root VDOM, as seen from 'vd="root"'. Additionally, the log type is identified as "utm," indicating that this is a security log. The 'action' set to 'blocked' refers to a web filter policy blocking the traffic, not a direct action from the firewall policy.

Halmonte0780 · Answer

B. VDOM=root
C. Security=UTM

D. Log severity is set to error on FortiGate. obviously wrong
B. Traffic belongs to the root VDOM. correct (vd="root")
A. Traffic is blocked because Action is set to DENY in the firewall policy. wrong (msg="URL belongs to a DENIED CATEGORY in policy" It's meaning traffic blocked with "Security Profiles" but Action is allow int the firewall policy)
C. This is a security log. correct (type="utm")

imwatever · Answer

"vd=root" 
"type=utm"

ansalias · Answer

B and C is correct, 
A is not correct, because the log does not state that the firewall policy drops the packet. The log states it drop the packet because the web filter profile blocks it. Profile is not the firewall policy.

millerry · Answer

B. Correct ("vd=root")
C. Correct ("type="utm")

Takumi · Answer

The answer are B and D

Takumi · Answer

The answer are B and C

lupnoob · Answer

Answer is B, C.

rian00z_ · Answer

Correct answers= BD

raydel92 · Answer

B. Traffic belongs to the root VDOM.
C. This is a security log.

Reference and download study guide:
https://ebin.pub/fortinet-fortigate-security-study-guide-for-fortios-72.html

Jumpy007 · Answer

FortiGate_Security_7.2_Course p.  176
B. vd="root"
C. Security log, log type = utm

itzuy06 · Answer

A: action=blocked; msg = "URL belongs to a dnied categoy in policy" it's the same example of te FortiGate Security pg: 178
C: Security: type=UTM

nse4_fgt-72 Exam - Question 94

Discussion