EMT Practice Test

1. Question Content...


Question List

Question1: What information is flushed when the chunk-size value is changed in the config dlp settings?

Question2: How does FortiGate select the central SNAT policy that is applied to a TCP session?

Question3: Examine the two static routes shown in the exhibit, then answer the following question.

Which of the following is the expected FortiGate behavior regarding these two routes to the same destination?

Question4: When browsing to an internal web server using a web-mode SSL VPN bookmark, which IP address is used as the source of the HTTP request?

Question5: In a high availability (HA) cluster operating in active-active mode, which of the following correctly describes the path taken by the SYN packet of an HTTP session that is offloaded to a secondary FortiGate?

Question6: View the exhibit.

Based on the configuration shown in the exhibit, what statements about application control behavior are true?
(Choose two.)

Question7: Which of the following FortiGate configuration tasks will create a route in the policy route table? (Choose two.)

Question8: View the following exhibit, which shows the firewall policies and the object uses in the firewall policies.


The administrator is using the Policy Lookup feature and has entered the search create shown in the following exhibit.

Which of the following will be highlighted based on the input criteria?

Question9: HTTP Public Key Pinning (HPKP) can be an obstacle to implementing full SSL inspection. What solutions could resolve this problem? (Choose two.)

Question10: View the certificate shown to the exhibit, and then answer the following question:

The CA issued this certificate to which entity?

Question11: What FortiGate components are tested during the hardware test? (Choose three.)

Question12: Which statements about antivirus scanning mode are true? (Choose two.)

Question13: Examine the FortiGate configuration:

What will happen to unauthenticated users when an active authentication policy is followed by a fall through policy without authentication?

Question14: How does FortiGate verify the login credentials of a remote LDAP user?

Question15: View the exhibit:

Which the FortiGate handle web proxy traffic rue? (Choose two.)

Question16: Which of the following statements about converse mode are true? (Choose two.)

Question17: Which statements best describe auto discovery VPN (ADVPN). (Choose two.)

Question18: Which of the following static routes are not maintained in the routing table?

Question19: A FortiGate is operating in NAT mode and configured with two virtual LAN (VLAN) sub interfaces added to the physical interface.
Which statements about the VLAN sub interfaces can have the same VLAN ID, only if they have IP addresses in different subnets.

Question20: An administration wants to throttle the total volume of SMTP sessions to their email server. Which of the following DoS sensors can be used to achieve this?

Question21: Why does FortiGate keep TCP sessions in the session table for some seconds even after both sides (client and server) have terminated the session?

Question22: What criteria does FortiGate use to look for a matching firewall policy to process traffic? (Choose two.)

Question23: Which of the following statements about backing up logs from the CLI and downloading logs from the GUI are true? (Choose two.)

Question24: If the Issuer and Subject values are the same in a digital certificate, which type of entity was the certificate issued to?

Question25: Which of the following conditions must be met in order for a web browser to trust a web server certificate signed by a third-party CA?

Question26: Examine the IPS sensor and DoS policy configuration shown in the exhibit, then answer the question below.

When detecting attacks, which anomaly, signature, or filter will FortiGate evaluate first?

Question27: View the exhibit:

The client cannot connect to the HTTP web server. The administrator ran the FortiGate built-in sniffer and got the following output:

What should be done next to troubleshoot the problem?

Question28: You are configuring the root FortiGate to implement the security fabric. You are configuring port10 to communicate with a downstream FortiGate. View the default Edit Interface in the exhibit below:

When configuring the root FortiGate to communicate with a downstream FortiGate, which settings are required to be configured? (Choose two.)

Question29: Which statements about the firmware upgrade process on an active-active HA cluster are true? (Choose two.)

Question30: What files are sent to FortiSandbox for inspection in flow-based inspection mode?

Question31: Which of the following statements about virtual domains (VDOMs) are true? (Choose two.)

Question32: If the Services field is configured in a Virtual IP (VIP), which statement is true when central NAT is used?

Question33: How do you format the FortiGate flash disk?

Question34: You have tasked to design a new IPsec deployment with the following criteria:
* All satellite offices must connect to the two HQ sites.
* The satellite offices do not need to communicate directly with other satellite offices.
* Backup VPN is not required.
* The design should minimize the number of tunnels being configured.
Which topology should be used to satisfy all of the requirements?

Question35: View the exhibit.


What does this raw log indicate? (Choose two.)

Question36: What FortiGate configuration is required to actively prompt users for credentials?

Question37: On a FortiGate with a hard disk, how can you upload logs to FortiAnalyzer or FortiManager? (Choose two.)

Question38: Examine this output from a debug flow:

Which statements about the output are correct? (Choose two.)

Question39: An administrator has enabled the DHCP Server on the port1 interface and configured the following based on the exhibit.

Which statement is correct based on this configuration?
Response:

Question40: Which statements about a One-to-One IP pool are true? (Choose two.)

Question41: An employee connects to the https://example.com on the Internet using a web browser. The web server's certificate was signed by a private internal CA. The FortiGate that is inspecting this traffic is configured for full SSL inspection.
This exhibit shows the configuration settings for the SSL/SSH inspection profile that is applied to the policy that is invoked in this instance. All other settings are set to defaults. No certificates have been imported into FortiGate. View the exhibit and answer the question that follows.

Which certificate is presented to the employee's web browser?

Question42: Which of the following route attributes must be equal for static routes to be eligible for equal cost multipath (ECMP) routing? (Choose two.)

Question43: Refer to the exhibit.

According to the certificate values shown in the exhibit, which type of entity was the certificate issued to?

Question44: An administrator wants to configure a FortiGate as a DNS server. FotiGate must use a DNS database first, and then relay all irresolvable queries to an external DNS server. Which of the following DNS methods must you use?

Question45: During the digital verification process, comparing the original and fresh hash results satisfies which security requirement?

Question46: View the exhibit.

Which users and user groups are allowed access to the network through captive portal?

Question47: An administrator has configured the following settings:

What does the configuration do? (Choose two.)

Question48: Which is the correct description of a hash result as it relates to digital certificates?

Question49: Which of the following are valid actions for FortiGuard category based filter in a web filter profile ui proxy-based inspection mode? (Choose two.)