Latest Certified Success Dumps Download

CISCO, MICROSOFT, COMPTIA, HP, IBM, ORACLE, VMWARE
925-201b Examination questions (September)

Achieve New Updated (September) Fortinet 925-201b Examination Questions 41-50

September 24, 2015

Ensurepass

 

QUESTION 41

Which of the following greatest impact the security of VPN tunnel

 

A.

aggressive mode

B.

main mode

C.

short keep alive

D.

key life based on bytes rather than seconds

E.

PFS

F.

use fewer proposals for encryption and authentication

 

Answer: A

 

 

QUESTION 42

Which one is the most efficient way to block MSN traffic by Fortigate unit ?

 

A.

Use IPS module by applying protection profile

B.

Use Antivirus engine

C.

Use firewall policy

D.

Use content filtering

 

 

 

 

 

Answer: A

 

 

QUESTION 43

In the FortiOS 2.80 , which of the following feature can be configured per-VD?

 

Select all that apply.

 

A.

physical interface

B.

(b) vlan sub interface

C.

routing

D.

firewall policy

E.

vpn

F.

protection profile

G.

log & report

 

Answer: ABCDE

Explanation: from the administration guide of FG-60 page148 – 152 , physical interface , clan sub interface , routing information , firewall policy , vpn setting ca be configured per-virtual domain basis .

 

 

QUESTION 44

When configure meshed VPN , all traffic is routed through the hub at the central

 

site ?

 

A.

true

B.

false

 

Answer: B

Explanation:Concentrator

In a hub-and-spoke configuration, connections to a number of remote peers radiate

 

 

 

 

 

from a single, central FortiGate unit. Site-to-site connections between the remote peers do not exist; however, VPN tunnels between any two of the remote peers can be established through the FortiGate unit “hub”. In a hub-and-spoke network, all VPN tunnels terminate at the hub. The peers that connect to the hub are known as “spokes”. The hub functions as a concentrator on the network, managing all VPN connections between the spokes. VPN traffic passes from one tunnel to the other through the hub.

You define a concentrator to include spokes in the hub-and-spoke configuration.

 

 

QUESTION 45

When setting PPTP you find the settings fields are grey in colour, which of the

 

following is a possible cause ?

 

A.

vpn is not installed

B.

user group has not been created

C.

PPTP is not enabled

D.

IPSEC is used

 

Answer: C

 

 

QUESTION 46

Fortigate is abe to check the banned word for both web and email

 

A.

true

B.

false

 

Answer: A

 

 

QUESTION 47

Best describe the feature of firewall policy

 

A.

if there is no preceding matching policy the packet is dropped

B.

the primary function of firewall

C.

policy can not be applied on user group

 

 

 

 

D.

policy can not be applied with protection profile

 

Answer: A

 

 

QUESTION 48

What’s the difference between RIP V1 & V2? Select all that apply.

 

A.

carry more information

B.

support simple authentication

C.

support subnet mask

D.

support encryption

 

Answer: ABC

 

 

QUESTION 49

What of following is true? Select all that apply.

 

A.

dialup vpn only can be used in NAT mode

B.

pptp can be used in NAT/Route mode

C.

l2tp can be used in NAT/Route mode

D.

l2f can be used in NAT/Route mode

 

Answer: ABC

 

 

QUESTION 50

Which of the following file type can be blocked by Fortigate Antivirus engine file

 

block function? Select all that apply.

 

A.

bat , com , dll , doc , exe

B.

gz , hta , ppt , rar , tar , tgz

C.

vb? , wps , xl? , zip , pif , cpe

D.

pdf , doc , xls

 

Answer: ABC

 

Free VCE & PDF File for Fortinet 925-201b Real Exam

Instant Access to Free VCE Files: CompTIA | VMware | SAP …
Instant Access to Free PDF Files: CompTIA | VMware | SAP …