Browse Exams Pricing

ExamsFCP_FGT_AD-7.6Questions

FCP_FGT_AD-7.6 Exam Questions

128 real FCP_FGT_AD-7.6 exam questions with expert-verified answers and explanations. Page 2 of 3.

Question #51Routing
Refer to the exhibit. Which algorithm does SD-WAN use to distribute traffic that does not match any of the SD-WAN rules?
SD-WANTraffic DistributionLoad BalancingFortiGate
Question #52Firewall policies and authentication
Refer to the exhibit. In the network shown in the exhibit, the web client cannot connect to the HTTP web server. The administrator runs the FortiGate built-in sniffer and gets the...
TroubleshootingFortiGate DiagnosticsPacket FlowNetwork Connectivity
Question #53Deployment and system configuration
Refer to the exhibit, which shows an SD-WAN zone configuration on the FortiGate GUI. Based on the exhibit, which statement is true?
SD-WANZonesFortiGate GUINetwork Interfaces
Question #54Deployment and system configuration
Which two statements are true regarding FortiGate HA configuration synchronization? (Choose two.)
FortiGate HAConfiguration SynchronizationHA SynchronizationChecksums
Question #55Content inspection
What are two features of the NGFW profile-based mode? (Choose two.)
NGFW profile-based modeSecurity profilesContent inspectionFlow/Proxy inspection
Question #56Content inspection
Refer to the exhibits. You have implemented the application sensor and the corresponding firewall policy as shown in the exhibits. Which two factors can you observe from these conf...
Application ControlSecurity ProfilesFortiGate PoliciesTraffic Filtering
Question #57Content inspection
Refer to the exhibits. The exhibits show the application sensor configuration and the Excessive- Bandwidth and Apple filter details. Based on the configuration, what will happen to...
Application ControlFortiGatePolicy ConfigurationTraffic Filtering
Question #59Routing
Refer to the exhibit. Which two statements are true about the routing entries in this database table? (Choose two.)
Routing TableAdministrative DistanceDefault RouteRoute Selection
Question #60Content inspection
Which three pieces of information does FortiGate use to identify the hostname of the SSL server when SSL certificate inspection is enabled? (Choose three.)
SSL inspectionTLS handshakeSNISSL certificates
Question #61Routing
Which three strategies are valid SD-WAN rule strategies for member selection? (Choose three.)
SD-WANRule StrategyMember SelectionLoad Balancing
Question #62Deployment and system configuration
What are two characteristics of HA cluster heartbeat IP addresses in a FortiGate device? (Choose two.)
HA heartbeatCluster IP addressingFortiGate HA configuration
Question #63Firewall policies and authentication
Refer to the exhibit, which contains a RADIUS server configuration. An administrator added a configuration for a new RADIUS server. While configuring, the administrator enabled Inc...
RADIUSAuthenticationUser GroupsFortiGate Configuration
Question #64Deployment and system configuration
Refer to the exhibits. An administrator creates a new address object on the root FortiGate (HQ- NGFW-1) in the Security Fabric. After synchronization, this object is not available...
Security FabricObject SynchronizationFortiGate ConfigurationAddress Object
Question #65Firewall policies and authentication
Refer to the exhibit showing a debug flow output. Which two conclusions can you make from the debug flow output? (Choose two.)
debug flowpacket processingroutingfirewall policies
Question #66Content inspection
When FortiGate performs SSL/SSH full inspection, you can decide how it should react when it detects an invalid certificate. Which three actions are valid actions that FortiGate can...
SSL/SSH InspectionInvalid CertificatesFortiGate Security ProfilesTraffic Actions
Question #67Firewall policies and authentication
You want to ensure that an SSL VPN user's authenticated session does not remain active after they disconnect from the VPN. Which configuration will ensure this?
SSL VPNAuthentication sessionSession managementFortiGate configuration
Question #68Firewall policies and authentication
Refer to the exhibit, which shows a firewall policy to enable active authentication. When attempting to access an external website using an active authentication method, the user i...
Firewall PoliciesActive AuthenticationDNSUser Authentication
Question #69Firewall policies and authentication
Refer to the exhibit. Why did the FortiGate device drop the packet?
Firewall PoliciesImplicit DenyPacket DropTroubleshooting
Question #70Routing
Refer to the exhibit, which shows a routing table. An administrator wants to create a new static route so the traffic to the subnet 172.20.1.0/24 is routed through port2 only. What...
Static RoutingRoute PreferenceAdministrative DistanceFortiGate Routing
Question #71Content inspection
Refer to the exhibit. Why is the Antivirus scan switch grayed out when you are creating a new antivirus profile for FTP?
Antivirus ProfileContent InspectionFortiOS UISecurity Profile Configuration
Question #72VPN
An administrator has configured a dialup IPsec VPN on FortiGate with add-route enabled. However, the static route is not showing in the routing table. Which two statements about th...
IPsec VPNFortiGate RoutingPhase 2 SelectorsVPN Troubleshooting
Question #73Firewall policies and authentication
An administrator configured a FortiGate device to act as a collector for agentless polling mode. What must the administrator add to the FortiGate device to retrieve AD user group i...
FortiGateActive Directory IntegrationLDAPUser Identification
Question #74Firewall policies and authentication
What are two features of FortiGate FSSO agentless polling mode? (Choose two.)
FSSOAgentless PollingUser AuthenticationActive Directory Integration
Question #75Content inspection
A network administrator has enabled full SSL inspection and web filtering on FortiGate. When visiting any HTTPS websites, the browser reports certificate warning errors. When visit...
SSL InspectionCertificate TrustHTTPS Warnings
Question #76Routing
A network administrator wants to set up redundant IPsec VPN tunnels on FortiGate by using two IPsec VPN tunnels and static routes. All traffic must be routed through the primary tu...
IPsec VPNRedundancyStatic RoutesDead Peer Detection (DPD)
Question #77Deployment and system configuration
An administrator wants to form an HA cluster using the FGCP protocol. Which two requirements must the administrator ensure both members fulfill? (Choose two.)
HA ClusterFGCPFortiGate PrerequisitesSystem Configuration
Question #78Firewall policies and authentication
FortiGate is integrated with FortiAnalyzer and FortiManager. When creating a firewall policy, which attribute must an administrator include to enhance functionality and enable log...
Firewall policiesFortiManagerFortiAnalyzerCentralized logging
Question #79Deployment and system configuration
Refer to the exhibit. The administrator configured SD-WAN rules and set the FortiGate traffic log page to display SD-WAN-specific columns: SD-WAN Quality and SD- WAN Rule Name. For...
SD-WANLoggingImplicit rulesTroubleshooting
Question #80Content inspection
An administrator manages a FortiGate model that supports NTurbo. How does NTurbo acceleration enhance antivirus performance?
NTurboHardware AccelerationAntivirus PerformanceFlow-based Inspection
Question #81Content inspection
Refer to the exhibit. Review the intrusion prevention system (IPS) profile signature settings shown in the exhibit. What can you conclude about the signature when adding the FTP.Lo...
IPSSecurity ProfilesSignature SettingsPacket Logging
Question #82Firewall policies and authentication
Refer to the exhibits. A diagram of a FortiGate device connected to the network VIP object and firewall policy configurations are shown. The WAN (port2) interface has the IP addres...
Virtual IP (VIP)Port ForwardingNAT (Network Address Translation)Firewall Policy
Question #83Firewall policies and authentication
Refer to the exhibits. The exhibits show a diagram of a FortiGate device connected to the network, and the firewall policies, VIP, and IP pool configurations on the FortiGate devic...
Source NAT (SNAT)Firewall PoliciesVirtual IP (VIP)IP Pool
Question #84Routing
Refer to the exhibit. Based on the routing table shown in the exhibit, which two statements are true? (Choose two.)
Routing TableReverse Path Forwarding (RPF)Strict RPFPacket Forwarding
Question #85Deployment and system configuration
An administrator configures FortiGuard servers as DNS servers on FortiGate using default settings. What is true about the DNS connection to a FortiGuard server?
DNSFortiGuardDNS over TLSDefault Settings
Question #86Firewall policies and authentication
What are two features of collector agent advanced mode? (Choose two.)
Collector AgentActive DirectoryUser GroupsLDAP Integration
Question #87Deployment and system configuration
Refer to the exhibits. An administrator configured both members of an HA cluster at the same time. After one week of monitoring, the administrator wants to verify the HA failover p...
FortiGate HAHA Failover TestingMonitored InterfacesSystem Redundancy
Question #88Deployment and system configuration
An administrator needs to analyze and resolve port conflicts between SSL VPN and HTTPS administrative access on the same interface. In which two ways can this be done? (Choose two....
Port Conflict ResolutionSSL VPN ConfigurationHTTPS Administrative AccessInterface Management
Question #89Content inspection
Refer to the exhibit. What can you conclude from the log shown in the exhibit?
IPSLog analysisResource exhaustionSystem health
Question #90Content inspection
Refer to the exhibits. You have implemented the application sensor and the corresponding firewall policy as shown in the exhibits. What would you do to resolve this issue?
Application ControlApplication IdentificationSecurity ProfilesTroubleshooting
Question #91Content inspection
Refer to the exhibits. A web filter profile configuration and firewall policy configuration are shown. block page. Based on the exhibits, what is the possible cause of the issue?
Web FilteringFortiGateConfigurationWeb Rating Override
Question #92Deployment and system configuration
Which two statements about the Security Fabric rating are true? (Choose two.)
Security FabricSecurity RatingRoot FortiGatePCI Compliance
Question #93Firewall policies and authentication
An administrator has configured the following settings: What are the two results of this configuration? (Choose two.)
Firewall policiesTraffic handlingLoggingDenied traffic
Question #94VPN
A FortiGate administrator is required to reduce the attack surface on the SSL VPN portal. Which SSL timer can you use to mitigate a denial of service (DoS) attack?
SSL VPNDoS MitigationSecurity HardeningFortiGate Configuration
Question #95Firewall policies and authentication
Refer to the exhibits. The exhibits show a diagram of a FortiGate device connected to the network, as well as the firewall policy and IP pool configuration on the FortiGate device....
FortiGate NATIP Pool ConfigurationSource NAT OverloadFirewall Policy
Question #96Deployment and system configuration
Refer to the exhibit. Which two statements about the FortiGuard connection are true? (Choose two.)
FortiGuard connectionServer selectionDefault portsLoad balancing
Question #98Content inspection
Refer to the exhibits. You have implemented the application sensor and the corresponding firewall policy as shown in the exhibits. Which two actions would you take to resolve the i...
Application ControlSSL InspectionPolicy PriorityTroubleshooting
Question #99Content inspection
Refer to the exhibits. You are asked to implement an antivirus profile for files downloaded through FTP, HTTP, and HTTPS. While testing, you are successful with HTTP and FTP protoc...
SSL InspectionAntivirus ProfileHTTPS SecurityFirewall Policy Configuration
Question #100Firewall policies and authentication
Refer to the exhibit. Which statement about this firewall policy list is true?
Firewall PoliciesPolicy OrganizationFortiGate GUIImplicit Deny
Question #101Deployment and system configuration
Refer to the exhibit showing a FortiGuard connection debug output. Based on the output, which two facts does the administrator know about the FortiGuard connection? (Choose two.)
FortiGuard connectivityLog analysisSystem configuration
Question #102Deployment and system configuration
An administrator must enable a DHCP server on one of the directly connected networks on FortiGate. However, the administrator is unable to complete the process on the GUI to enable...
DHCP ServerInterface ConfigurationFortiGate GUIInterface Roles

PreviousPage 2 of 3Next

study smarter, certify faster.

Product

Browse Exams
Pricing
PDF Downloads

Resources

Blog
Glossary
Topics
FAQ
Contact Us

Legal

Terms of Service
Privacy Policy
Cookie Policy
DMCA
Refund Policy

Company

About
Contact

© 2026 NerdExam. All rights reserved.Built for IT professionals

NerdExam is a trading name of WADL Solutions Limited, a company incorporated in Hong Kong (CR# 80143234). Registered office: Unit 2904-05, 29/F, Universal Trade Centre, 3 Arbuthnot Road, Central, Hong Kong.

CompTIA, AWS, Cisco, Microsoft, Google Cloud, Oracle, VMware, and other certification names referenced on this site are trademarks of their respective owners. NerdExam is not affiliated with, endorsed by, or sponsored by any certification vendor.