nerdexam
Fortinet

FCNSP · Question #31

FCNSP Question #31: Real Exam Question with Answer & Explanation

The correct answer is A. The sample packet trace illustrated in the exhibit provides details on the packet that requires detection.. See the full explanation below for the reasoning.

Question

Which of the following describes the best custom signature for detecting the use of the word "Fortinet" in chat applications?

Exhibits

FCNSP question #31 exhibit 1
FCNSP question #31 exhibit 2

Options

  • AThe sample packet trace illustrated in the exhibit provides details on the packet that requires detection.
  • BF-SBID( --protocol tcp; --flow from_client; --pattern "fortinet"; --no_case; )
  • CF-SBID( --protocol tcp; --flow from_client; --pattern "X-MMS-IM-Format"; --pattern "fortinet"; -- within 20;
  • DF-SBID( --protocol tcp; --flow from_client; --pattern "X-MMS-IM-Format"; --pattern "fortinet"; -- within 20; )

Community Discussion

No community discussion yet for this question.

Sign up to join the discussion
Full FCNSP Practice