nse8_812 Exam QuestionsBrowse all questions from this exam
Go to Exam

nse8_812 Exam - Question 34

Refer to the CLI configuration of an SSL inspection profile from a FortiGate device configured to protect a web server:

Based on the information shown, what is the expected behavior when an HTTP/2 request comes in?

Show Answer
Correct Answer: A

The configuration indicates that ALPN (Application-Layer Protocol Negotiation) support is set to 'none.' This setting means the FortiGate will not support ALPN and will reject any HTTP/2 ALPN headers in the client requests. As a result, when an HTTP/2 request comes in, FortiGate will reject all HTTP/2 ALPN headers.

Discussion

1 comment
Sign in to comment
pplee_shOption: B
Aug 21, 2023

none -> The FortiGate always strips the ALPN header from the Client Hello when forwarding

re_j0hn
Feb 8, 2024

https://docs.fortinet.com/document/fortigate/7.0.0/new-features/710924/http-2-support-in-proxy-mode-ssl-inspection