Exam NSE7_EFW-7.2 Topic 4 Question 61 Discussion

Actual exam question for Fortinet's NSE7_EFW-7.2 exam
Question #: 61
Topic #: 4
Exhibit.

ISFW is installed in the access layer NGFW is performing SNAT and web tittering DCFW is running IPS Which two statements are true regarding the Security Fabric logging? (Choose two.)

Suggested Answer: D,E Vote an answer

by alert.mylab at Apr 02, 2025, 02:50 AM

Limited Time Offer

15%

Off

Get Premium NSE7_EFW-7.2 Questions as Interactive Self Test Engine or PDF

Comments

Chosen Answer:
This is a voting comment (?) , you can switch to a simple comment.
Switch to a voting comment New
Nick name: Submit Cancel
alert.mylab
2025-04-02 02:50:38
Option C:
"The web session is forwarded to NGFW, which doesn’t duplicate the initial traffic log but does generate a traffic log as a result of SNAT being applied to the session. Additionally, NGFW applies a web filtering policy to this session and generates the relevant UTM logs, if appropriate." (Enterprise Firewall 7.2 Study Guide | Page 68)

The NGFW generates UTM logs for web sessions, including web filtering actions, along with the initial traffic log.

Option D:
"DCFW also does not generate a duplicate traffic log, but it performs IPS inspection based on its configuration and, should a signature match be triggered that results in an action generating a log, logs the event." (Enterprise Firewall 7.2 Study Guide | Page 68)

The DCFW generates UTM logs for file server sessions initiated by Client-1 only if an IPS inspection is triggered.
upvoted 1 times
...
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.
0
0
0
10