NSE4 Question #550: Real Exam Question with Answer & Explanation

The correct answer is A: Reduces the amount of logs generated by denied traffic.. This FortiGate configuration reduces the amount of logs generated by denied traffic by creating a session for such traffic, which prevents repeated logging of individual denied packets.

Submitted by anjalisingh· Apr 18, 2026Firewall Policies and Authentication

Question

An administrator has configured the following settings: What does the configuration do? (Choose two.)

Options

AReduces the amount of logs generated by denied traffic.
BEnforces device detection on all interfaces for 30 minutes.
CBlocks denied users for 30 minutes.
DCreates a session for traffic being denied.

Explanation

This FortiGate configuration reduces the amount of logs generated by denied traffic by creating a session for such traffic, which prevents repeated logging of individual denied packets.

Common mistakes.

B. There is no direct correlation between reducing logs for denied traffic and enforcing device detection on interfaces for a specific duration.
C. While traffic might be denied, creating a session for denied traffic does not inherently block users for a specified duration like a quarantine or ban.

Concept tested. FortiGate Deny Session and Logging Reduction

Reference. https://docs.fortinet.com/document/fortigate/7.4.0/administration-guide/469902/session-handling

Topics

#Firewall Sessions#Denied Traffic Handling#Logging#Policy Behavior

Community Discussion

No community discussion yet for this question.

Full NSE4 Practice Browse All NSE4 Questions