Free Access Fortinet.NSE7_LED-7.0.v2025-09-29.q47 Practice Test (Page 9)

Question 36

An administrator is testing the connectivity for a new VLAN. The devices in the VLAN are connected to a FortiSwitch device that is managed by FortiGate. Quarantine is disabled on FortiGate.
While testing, the administrator noticed that devices can ping FortiGate and FortiGate can ping the devices. The administrator also noticed that inter-VLAN communication works. However, intra-VLAN communication does not work.
Which scenario is likely to cause this issue?

A.Access VLAN is enabled on the VLAN

B.The FortiGate ARP table is missing entries

C.The FortiSwitch MAC address table is missing entries

D.The native VLAN configured on the ports is incorrect

Question 37

Refer to the exhibit.

Examine the FortiSwitch port configuration and the FortiGate interface configuration shown in the exhibit.

Based on the configuration shown in the exhibit, which two statements about how port2 handles tagged and untagged traffic are true? (Choose two.)

A.Port2 assigns ingress untagged traffic to VLAN 10.

B.Port2 tags egress traffic for VLAN 10.

C.Port2 accepts ingress tagged traffic for VLAN IDs 4091 and 4093 only.

D.Port2 accepts ingress untagged traffic for VLAN IDs 10, 4091, and 4093 only.

Question 38

You are setting up an SSID (VAP) to perform RADIUS-authenticated dynamic VLAN allocation.
Which three RADIUS attributes must be supplied by the RADIUS server to enable successful VLAN allocation? (Choose three.)

A.Tunnel-Type

B.Tunnel-Preference

C.Tunnel-Medium-Type

D.Tunnel-Pvt-Group-ID

E.Tunnel-Private-Group-ID

Question 39

Refer to the exhibit.
Examine the FortiGate logs, widget, and CLI output shown in the exhibit.

An administrator is testing the Security Fabric quarantine automation. The test device (10.0.2.2) is connected to a managed FortiSwitch device.
A few seconds after trying to access a malicious website from the test device, the test device can no longer access the internet and other VLANs in the network. However, the device is still able to access other devices in the same VLAN.
Based on the information shown in the exhibit, which modification should the administrator make to fix the problem?

A.Change the quarantine mode to by VLAN mode.

B.Change the quarantine mode to by redirect mode.

C.Enable the access layer quarantine action on the Quarantine_Devices automation stitch.

D.Configure a firewall policy on FortiGate to block the intra-VLAN traffic.

Question 40

Refer to the exhibit.

Examine the FortiGate configuration FortiAnalyzer logs and FortiGate widget shown in the exhibit An administrator is testing the Security Fabric quarantine automation The administrator added FortiAnalyzer to the Security Fabric and configured an automation stitch to automatically quarantine compromised devices The test device (::.:.:.!) s connected to a managed Fort Switch dev :e After trying to access a malicious website from the test device, the administrator verifies that FortiAnalyzer has a log (or the test connection However the device is not getting quarantined by FortiGate as shown in the quarantine widget Which two scenarios are likely to cause this issue? (Choose two)

A.The web filtering rating service is not working

B.FortiAnalyzer does not have a valid threat detection services license

C.The device does not have FortiClient installed

D.FortiAnalyzer does not consider the malicious website an indicator of compromise (IOC)

Latest Upload: 128LinuxFoundation.CKAD.v2025-09-29.q102; 118Fortinet.NSE7_LED-7.0.v2025-09-29.q47; 111CIPS.L5M4.v2025-09-29.q14; 106Scrum.PSM-I.v2025-09-29.q121; 154Google.Professional-Cloud-DevOps-Engineer.v2025-09-27.q141; 187Snowflake.ARA-C01.v2025-09-27.q148; 123Sitecore.Sitecore-XM-Cloud-Developer.v2025-09-27.q25; 141GRI.ESRS-Professional.v2025-09-27.q15; 145Oracle.1Z0-1061-24.v2025-09-27.q116; 163SAP.C-THINK1-02.v2025-09-26.q87

Question 36

Question 37

Question 38

Question 39

Question 40

Download PDF File