Free Access Fortinet.FCP_FGT_AD-7.4.v2025-07-07.q98 Practice Test (Page 7)

Question 26

View the exhibit.

Both VDOMs are operating in NAT/route mode. The subnet 10.0.1.0/24 is connected to VDOM1. The subnet 10.0.2.0/24 is connected to VDOM2. There is an inter-VDOM link between VDOM1 and VDOM2.
Also, necessary firewall policies are configured in VDOM1 and VDOM2.
Which two static routes are required in the FortiGate configuration, to route traffic between both subnets through an inter-VDOM link? (Choose two.)

A.A static route in VDOM1 with the destination subnet matching the subnet assigned to the inter-VDOM link

B.A static route in VDOM2 for the destination subnet 10.0.1.0/24

C.A static route in VDOM1 for the destination subnet 10.0.2.0/24

D.A static route in VDOM2 with the destination subnet matching the subnet assigned to the inter- VDOM link

Question 27

Refer to the exhibits, which show the system performance output and the default configuration of high memory usage thresholds in a FortiGate.

Based on the system performance output, what can be the two possible outcomes? (Choose two.)

A.FortiGate will start sendingall files to FortiSandbox for inspection.

B.Administrators cannot change the configuration.

C.Administrators can access FortiGate onlythrough the console port.

D.FortiGate has entered conserve mode.

Question 28

Refer to the exhibits, which show the firewall policy and the security profile for Facebook.

Users are given access to the Facebook web application. They can play video content hosted on Facebook but they are unable to leave reactions on videos or other types of posts.
Which part of the configuration must you change to resolve the issue?

A.Make the SSL inspection a deep content inspection

B.Add Facebook to the URL category in the security policy

C.Disable HTTP redirect to HTTPS on the web browser

D.Get the additional application signatures required to add to the security policy

Question 29

Refer to the exhibit, which shows a partial configuration from the remote authentication server.

Why does the FortiGate administrator need this configuration?

A.To authenticate only the Training user group.

B.To set up a RADIUS server Secret

C.To authenticate and match the Training OU on the RADIUS server.

D.To authenticate Any FortiGate user groups.

Question 30

A FortiGate administrator is required to reduce the attack surface on the SSL VPN portal.
Which SSL timer can you use to mitigate a denial of service (DoS) attack?

A.SSL VPN dcls-hello-timeout

B.SSL VPN http-request-header-timeout

C.SSL VPN login-timeout

D.SSL VPN idle-timeout

Other Version: 823Fortinet.FCP_FGT_AD-7.4.v2024-10-18.q51

Latest Upload: 102PECB.ISO-IEC-27001-Lead-Implementer.v2025-09-06.q132; 104Salesforce.Data-Architect.v2025-09-05.q216; 104Adobe.AD0-E605.v2025-09-05.q50; 105Nutanix.NCP-MCI-6.10.v2025-09-05.q55; 104Oracle.1z0-591.v2025-09-05.q104; 122Supermicro.SDLCSA.v2025-09-04.q14; 109Google.Professional-Data-Engineer.v2025-09-04.q126; 112SAP.C-IBP-2311.v2025-09-04.q29; 106ASQ.CMQ-OE.v2025-09-04.q199; 130Oracle.1Z0-908.v2025-09-03.q74

Question 26

Question 27

Question 28

Question 29

Question 30

Download PDF File