FCSS_EFW_AD-7.4 · Question #36
FCSS_EFW_AD-7.4 Question #36: Real Exam Question with Answer & Explanation
The correct answer is D. With an external connector from Threat Feeds. The best way to automate a firewall policy using a daily updated list of IP addresses is by using an external connector from Threat Feeds. This allows FortiGate to dynamically retrieve real-time threat intelligence from external sources and apply it directly to security policies.
Question
Options
- AWith FortiNAC
- BWith FortiAnalyzer
- CWith a Security Fabric automation
- DWith an external connector from Threat Feeds
Explanation
The best way to automate a firewall policy using a daily updated list of IP addresses is by using an external connector from Threat Feeds. This allows FortiGate to dynamically retrieve real-time threat intelligence from external sources and apply it directly to security policies. By configuring Threat Feeds, the administrator can: Automatically update firewall policies with the latest malicious IPs daily. Block traffic from those IPs in real-time without manual intervention. Integrate with FortiGuard, third-party threat intelligence sources, or custom feeds (CSV, STIX/TAXII, etc.).
Community Discussion
No community discussion yet for this question.