EMT Practice Test

1. Question Content...


Question List

Question1: Which three statements about security associations (SA) in IPsec are correct? (Choose three.)

Question2: Examine this FortiGate configuration:

Examine the output of the following debug command:

Based on the diagnostic outputs above, how is the FortiGate handling the traffic for new sessions that require inspection?

Question3: A FortiGate is operating in NAT mode and configured with two virtual LAN (VLAN) sub interfaces added to the physical interface.
Which statements about the VLAN sub interfaces can have the same VLAN ID, only if they have IP addresses in different subnets.

Question4: Which statements are true regarding firewall policy NAT using the outgoing interface IP address with fixed port disabled? (Choose two.)

Question5: Which two statements are correct regarding FortiGate HA cluster virtual IP addresses? (Choose two.)

Question6: When browsing to an internal web server using a web-mode SSL VPN bookmark, which IP address is used as the source of the HTTP request?

Question7: Refer to the exhibit.

The exhibit contains a network diagram, virtual IP, IP pool, and firewall policies configuration.
The WAN (port1) interface has the IP address 10.200.1.1/24.
The LAN (port3) interface has the IP address 10 .0.1.254. /24.
The first firewall policy has NAT enabled using IP Pool.
The second firewall policy is configured with a VIP as the destination address.
Which IP address will be used to source NAT the internet traffic coming from a workstation with the IP address 10.0.1.10?

Question8: View the exhibit:

Which the FortiGate handle web proxy traffic rue? (Choose two.)

Question9: Refer to the web filter raw logs.

Based on the raw logs shown in the exhibit, which statement is correct?

Question10: Refer to the exhibit.

A network administrator is troubleshooting an IPsec tunnel between two FortiGate devices. The administrator has determined that phase 1 status is up. but phase 2 fails to come up.
Based on the phase 2 configuration shown in the exhibit, what configuration change will bring phase 2 up?

Question11: An administrator has configured outgoing Interface any in a firewall policy. Which statement is true about the policy list view?

Question12: An administrator has configured a strict RPF check on FortiGate. Which statement is true about the strict RPF check?

Question13: Examine the network diagram shown in the exhibit, then answer the following question:

Which one of the following routes is the best candidate route for FGT1 to route traffic from the Workstation to the Web server?

Question14: Examine the exhibit, which contains a virtual IP and firewall policy configuration.



The WAN (port1) interface has the IP address 10.200.1.1/24. The LAN (port2) interface has the IP address
10.0.1.254/24.
The first firewall policy has NAT enabled on the outgoing interface address. The second firewall policy is configured with a VIP as the destination address.
Which IP address will be used to source NAT the Internet traffic coming from a workstation with the IP address 10.0.1.10/24?

Question15: An administrator is running the following sniffer command:

Which three pieces of Information will be Includedin me sniffer output? {Choose three.)

Question16: Which two statements about antivirus scanning mode are true? (Choose two.)

Question17: Refer to theexhibits.


The exhibits show the SSL and authentication policy (Exhibit A) and the security policy (Exhibit B) tor Facebook.
Users are given access to the Facebook web application. They can play video content hosted on Facebook but they areunableto leavereactions on videos or other types ofposts.
Which part ofthe policy configuration must you change to resolve the issue?

Question18: What types of traffic and attacks can be blocked by a web application firewall (WAF) profile? (Choose three.)

Question19: An administrator has configured the following settings:

What are the two results of this configuration? (Choose two.)

Question20: By default, FortiGate is configured to use HTTPS when performing live web filtering with FortiGuard servers.
Which two CLI commands will cause FortiGate to use an unreliable protocol to communicate with FortiGuard servers for live web filtering? (Choose two.)

Question21: Which three authentication timeout types are availability for selection on FortiGate? (Choose three.)

Question22: How do you format the FortiGate flash disk?

Question23: Refer to the exhibit.

The exhibits show a network diagram and the explicit web proxy configuration.
In the commanddiagnose sniffer packet, what filter can you use to capture the traffic between the client and the explicit web proxy?

Question24: Refer to the exhibit.

Review the Intrusion Prevention System (IPS) profile signature settings. Which statement is correct in adding the FTP.Login.Failed signature to the IPS sensor profile?

Question25: Refer to the exhibit.

Which contains a network diagram and routing table output.
The Student is unable to access Webserver.
What is the cause of the problem and what is the solution for the problem?

Question26: Which of the following are purposes of NAT traversal in IPsec? (Choose two.)

Question27: Which statement about the policy ID number of a firewall policy is true?
D18912E1457D5D1DDCBD40AB3BF70D5D

Question28: Which two settings can be separately configured per VDOM on a FortiGate device? (Choose two.)

Question29: To complete the final step of a Security Fabric configuration, an administrator must authorize all the devices on which device?

Question30: Which of the following statements is true regarding SSL VPN settings for an SSL VPN portal?

Question31: Which CLI command will display sessions both from client to the proxy and from the proxy to the servers?

Question32: An administrator does not want to report the logon events of service accounts to FortiGate. What setting on the collector agent is required to achieve this?

Question33: Examine this output from a debug flow:

Why did the FortiGate drop the packet?