NSE8 試験問題を無料オンラインアクセス

A customer wants to secure the network shown on the exhibit with a full redundancy design.
Which security design would you use?

• A.Place a Forti Gate FGCP Cluster between DD and AA, then connect it to SWl, SW2, SW3, and SW4.
• B.Place a Forti Gate FGCP Cluster between BB and AA, then connect it to SWl, SW2, SW3, and SW4.
• C.Place a Forti Gate FGCP Cluster between DD and FF, then connect it to SWl, SW2, SW3, and SW4.
• D.Place a Forti Gate FGCP Cluster between BB and CC, then connect it to SWl, SW2, SW3, and SW4.

Your marketing department uncompressed and executed a file that the whole department received using
Skype.
Reviewing the exhibit, which two details do you determine frim your initial analysis if the payload?

• A.This is a type of Trojan that will download and pirate movies using your Netflix credentials.
• B.This type of threat of a DDoS attack using instant messaging to send e-m ails to further spread the
  infection.
• C.This threat payload is uploading private user videos which are then used to extort Bitcoin payments.
• D.The payload contains strings that the malware is monitoring to harvest credentials.

A customer wants to install a FortiSandbox device to identify suspicious files received by an e-mail server.
All the incoming e-mail traffic to the e-mail server uses the SMTPS protocol.
Which three solutions would be implemented? (Choose three.)

• A.FortiSandbox in sniffer input mode
• B.FortiMail device in gateway mode using the built-in MTA and sending the suspicious files to the
  FortiSandbox
• C.FortiGate device in NAT mode sending the suspicious files to the FortiSandbox
• D.FortiMail device in transparent mode acting as an SMTP proxy sending the suspicious files to the
  FortiSandbox
• E.FortiGate device in transparent mode sending the suspicious files to the FortiSandbox

A FortiGate is deployed in the NAT/Route operation mode.
This operation mode operates at which 051 layer?

• A.Layer 4
• B.Layer 3
• C.Layer 1
• D.Layer 2

Your colleague has enabled virtual clustering to load balance traffic between the cluster units. You notice
that all traffic is currently directed to a single FortiGate unit. Your colleague has applied the configuration
shown in the exhibit.
Which step would you perform to load balance traffic within the virtual cluster?

• A.Use the set override enable command on both units to allow the secondary unit to load balance traffic.
• B.Issue the diagnose sys ha reset-uptime command on the unit that is currently processing traffic to
  enable load balancing.
• C.Add an additional virtual cluster high-availability link to enable cluster load balancing.
• D.Input Virtual Cluster domain 1 and Virtual Cluster domain 2 device priorities for each cluster unit.