File Info
| Exam | NSE 7 - Public Cloud Security 6.4 |
| Number | NSE7_PBC-6.4 |
| File Name | Fortinet.NSE7_PBC-6.4.VCEplus.2022-01-06.30q.tqb |
| Size | 2 MB |
| Posted | Jan 06, 2022 |
| Download | Fortinet.NSE7_PBC-6.4.VCEplus.2022-01-06.30q.tqb |
How to open VCEX & EXAM Files?
Files with VCEX & EXAM extensions can be opened by ProfExam Simulator.
Coupon: MASTEREXAM
With discount: 20%
Demo Questions
Question 1
When configuring the FortiCASB policy, which three configuration options are available? (Choose three.)
- Intrusion prevention policies
- Threat protection policies
- Data loss prevention policies
- Compliance policies
- Antivirus policies
Correct answer: BCD
Explanation:
Reference: https://fortinetweb.s3.amazonaws.com/docs.fortinet.com/v2/attachments/bf017449-572a-11e9-81a4-00505692583a/forticasb-4.1.0-admin-guide.pdf (62) Reference: https://fortinetweb.s3.amazonaws.com/docs.fortinet.com/v2/attachments/bf017449-572a-11e9-81a4-00505692583a/forticasb-4.1.0-admin-guide.pdf (62)
Question 2
You have been tasked with deploying FortiGate VMs in a highly available topology on the Amazon Web Services (AWS) cloud. The requirements for your deployment are as follows:
- You must deploy two FortiGate VMs in a single virtual private cloud (VPC), with an external elastic load balancer which will distribute ingress traffic from the internet to both FortiGate VMs in an active-active topology.
- Each FortiGate VM must have two elastic network interfaces: one will connect to a public subnet and other will connect to a private subnet.
- To maintain high availability, you must deploy the FortiGate VMs in two different availability zones.
How many public and private subnets will you need to configure within the VPC?
- One public subnet and two private subnets
- Two public subnets and one private subnet
- Two public subnets and two private subnets
- One public subnet and one private subnet
Correct answer: A
Question 3
You are deploying Amazon Web Services (AWS) GuardDuty to monitor malicious or unauthorized behaviors related to AWS resources. You will also use the Fortinet aws-lambda-guardduty script to translate feeds from AWS GuardDuty findings into a list of malicious IP addresses. FortiGate can then consume this list as an external threat feed.
Which Amazon AWS services must you subscribe to in order to use this feature?
- GuardDuty, CloudWatch, S3, Inspector, WAF, and Shield.
- GuardDuty, CloudWatch, S3, and DynamoDB.
- Inspector, Shield, GuardDuty, S3, and DynamoDB.
- WAF, Shield, GuardDuty, S3, and DynamoDB.
Correct answer: A
Explanation:
Reference: https://fortinetweb.s3.amazonaws.com/docs.fortinet.com/v2/attachments/ed901ad2-4424-11e9-94bf-00505692583a/FortiOS_6.2.0_AWS_Cookbook.pdf Reference: https://fortinetweb.s3.amazonaws.com/docs.fortinet.com/v2/attachments/ed901ad2-4424-11e9-94bf-00505692583a/FortiOS_6.2.0_AWS_Cookbook.pdf
