Latest Certified Success Dumps Download

CISCO, MICROSOFT, COMPTIA, HP, IBM, ORACLE, VMWARE
925-201b Examination questions (September)

Achieve New Updated (September) Fortinet 925-201b Examination Questions 21-30

September 24, 2015

Ensurepass

 

QUESTION 21

What is the valid ipsec phase 2 option? Select all that apply.

 

A.

des

B.

3des

C.

md5

D.

sha1

 

Answer: CD

 

 

QUESTION 22

 

Which of the following Traffic shaping parameter can be configured? Select all that

 

apply.

 

A.

schedule

B.

traffic priority

C.

max bandwidth

D.

guarantee bandwidth

 

Answer: BCD

 

 

QUESTION 23

It has been decided that Key-Chain will be used in your corporate enterprise

 

routing environment . A key-Chain can …

 

A.

only be used with OSPF

B.

can be used with RIP v1

C.

can be used with RIP v2

D.

can be used with RIP v3

 

Answer: C

 

 

QUESTION 24

What is the default protection profile? Select all that apply.

 

A.

strict

B.

scan

C.

web

D.

unfiltered

 

Answer: ABCD

 

 

QUESTION 25

What is the valid IPS action when configure IPS signature? Select all that apply.

 

A.

log

 

 

 

 

B.

drop

C.

reset client , reset server

D.

pass

E.

clear session

F.

reset

 

Answer: ABCDEF

 

 

QUESTION 26

What is the correct protocol number for TCP?

 

A.

TCP / 6 , UDP / 17

B.

TCP / 16 , UDP 117

C.

TCP / 66 , UDP / 77

D.

TCP / 106 , UDP / 107

 

Answer: A

 

 

QUESTION 27

What is the correct policy order ,

 

A.

encrypt->accept->deny all

B.

encrypy->deny->accept->deny all

C.

accept->encrypt->deny

D.

deny->encrypt->accept

 

Answer: A

 

 

QUESTION 28

What can we do by using Forticlient software? Select all that apply.

 

A.

create VPN connection to remote networks

B.

scan your computer for virus

C.

configure real-time protection against virus and unauthorized modification of the Windows registry

D.

restrict access to your system and application by setting up firewall policies

 

 

 

 

 

Answer: ABCD

 

 

QUESTION 29

Fortigateuse port 9443 to do what function

 

A.

to communicate with proxy server

B.

to run push update

C.

to communicate with syslog server

D.

to communicate with Fortilog server

 

Answer: B

Explanation:Update center

You can configure the FortiGate unit to connect to the FortiProtect Distribution Network (FDN) to update the antivirus (including grayware), Spam Filter and attack

definitions and engines.

Before the FortiGate unit can receive antivirus and attack updates, it must be able to connect to the FortiProtect Distribution Network (FDN). The FortiGate unit uses HTTPS on port 443 to connect to the FDN. The FortiGate unit must be able to route packets to the Internet using port 443.

You can also configure the FortiGate unit to allow push updates. Push updates are provided to the FortiGate unit from the FDN using HTTPS on UDP port 9443. To receive push updates, the FDN must be able to route packets to the FortiGate unit using UDP port 9443.

The FDN is a world-wide network of FortiProtect Distribution Servers (FDSs). When the FortiGate unit connects to the FDN it connects to the nearest FDS. To do this, all FortiGate units are programmed with a list of FDS addresses sorted by nearest time zone according to the time zone configured for the FortiGate unit.

 

The FortiGate unit supports the following antivirus and attack definition update features User-initiated update from the FDN,

Hourly,daily,or weekly scheduled antivirus and attack definition and antivirus engine updates from the FDN,

 

 

 

 

 

Push update from the FDN,

Update status including version members, expiry date ,and update dates and times, Push updates through a NAT device.

To receive scheduled updates and push updates, you must register the FortiGate unit on the Fortinet support web page.

 

 

QUESTION 30

What is the valid web script filtering option for web filtering? Select all that apply.

 

A.

Java Applet

B.

Worm

C.

ActiveX

D.

Cookie

 

Answer: ACD

Free VCE & PDF File for Fortinet 925-201b Real Exam

Instant Access to Free VCE Files: CompTIA | VMware | SAP …
Instant Access to Free PDF Files: CompTIA | VMware | SAP …