Examice

Exam nse7_efw-72 All QuestionsBrowse all questions from this exam

Go to Exam

Question 35

Refer to the exhibit, which shows an error in system fortiguard configuration.

What is the reason you cannot set the protocol to udp in config system fortiguard?

udp is not a protocol option.

fortiguard-anycast is set to enable.

You do not have the corresponding write access.

FortiManager provides FortiGuard.

Correct Answer: B

You cannot set the protocol to UDP in the config system fortiguard because fortiguard-anycast is set to enable. This setting, when enabled, restricts the protocol options and causes the system to default to using HTTPS on port 443 for web filtering, which prevents the use of UDP.

Discussion

havokduOption: B

B is correct. You can enable UDP and ports 443, 53 or 8888 only after disabling fortiguard anycast setting on CLI. Otherwise Web-filtering will use HTTPS on port 443.

Heim_OxOption: B

B is correct. fortguard-anycast must be disabled to change the protocol to UDP. in this case, error is received when trying to set UDP protocol. This can indicate fortiguard-anycast is currently enabled.

ArtbrutOption: B

As per https://community.fortinet.com/t5/FortiGate/Technical-Tip-How-to-use-UDP-protocol-for-FortiGuard-web-filter/ta-p/191920

jddc10006Option: B

B its correct

charrucoOption: B

B is correct study guide page 245

5deee77Option: B

study guide page 245

MikeSco001Option: B

B is correct

mollyk70Option: A

A is correct

MikeSco001

answer is B