Browse Exams Pricing

ExamsNSE7_EFW-7.2Questions

NSE7_EFW-7.2 Exam Questions

102 real NSE7_EFW-7.2 exam questions with expert-verified answers and explanations. Page 1 of 3.

Question #1
Refer to the exhibit, which contains a TCL script configuration on FortiManager. An administrator has configured the TCL script on FortiManager, but the TCL script failed to apply...
Question #2
You want to improve reliability over a lossy IPSec tunnel. Which combination of IPSec phase 1 parameters should you configure?
Question #3
How are bulk configuration changes made using FortiManager CLI scripts? (Choose two.)
Question #4
Refer to the exhibit, which contains a partial configuration of the global system. What can you conclude from this output?
Question #5
Refer to the exhibits, which show the configurations of two address objects from the same FortiGate. Engineering address object Finance address object Why can you modify the Engine...
Question #6
Which two statements about the neighbor-group command are true? (Choose two.)
Question #7
Refer to the exhibit, which contains information about an IPsec VPN tunnel. What two conclusions can you draw from the command output? (Choose two.)
Question #8
Which two statements about IKE version 2 fragmentation are true? (Choose two.)
Question #9
An administrator has configured two FortiGate devices for an HA cluster. While testing HA failover, the administrator notices that some of the switches in the network continue to s...
Question #10
Refer to the exhibit, which shows the output of a BGP summary. What two conclusions can you draw from this BGP summary? (Choose two.)
Question #11
Refer to the exhibit, which shows a custom signature. Which two modifications must you apply to the configuration of this custom signature so that you can save it on FortiGate? (Ch...
Question #12
What are two functions of automation stitches? (Choose two.)
Question #13
Refer to the exhibit which shows config system central-management information. Which setting must you configure for the web filtering feature to function?
Question #14
Which two statements about the Security Fabric are true? (Choose two.)
Question #15
Refer to the exhibit which shows two configured FortiGate devices and peering over FGSP. The main link directly connects the two FortiGate devices and is configured using the set s...
Question #16
Refer to the exhibit, which shows a network diagram. Which protocol should you use to configure the FortiGate cluster?
Question #17
After enabling IPS, you receive feedback about traffic being dropped. What could be the reason?
Question #18
Refer to the exhibit which shows an ADVPN network. Which VPN phase 1 parameters must you configure on the hub for the ADVPN feature to function? (Choose two.)
Question #19
Which two statements about metadata variables are true? (Choose two.)
Question #20
Refer to the exhibits, which contain the network topology and BGP configuration for a hub. Exhibit A. Exhibit B. An administrator is trying to configure ADVPN with a hub and spoke...
Question #21
Refer to the exhibit, which contains a partial VPN configuration. What can you conclude from this configuration?
Question #22
Refer to the exhibit which shows information about an OSPF interface. What two conclusions can you draw from this command output? (Choose two.)
Question #23
Which two statements about the BFD parameter in BGP are true? (Choose two.)
Question #24
You created a VPN community using VPN Manager on FortiManager. You also added gateways to the VPN community. Now you are trying to create firewall policies to permit traffic over t...
Question #25
Refer to the exhibit, which shows a central management configuration. Which server will FortiGate choose for web filter rating requests, if 10.0.1.240 is experiencing an outage?
Question #26
Which statement about the designated router (DR) and backup designated router (BDR) in an OSPF multi-access network is true?
Question #27
Refer to the exhibit, which contains a partial policy configuration. Which setting must you configure to allow SSH?
Question #28
Refer to the exhibit, which shows an SSL certification inspection configuration. Which action does FortiGate take if the server name indication (SNI) does not match either the comm...
Question #29
Refer to the exhibit, which contains a partial OSPF configuration. What can you conclude from this output?
Question #30
Refer to the exhibit, which contains an ADVPN network diagram and a partial BGP configuration. Network diagram Partial BGP configuration Which two parameters should you configure i...
Question #31
You want to have faster detection for OSPF. Which parameter should you enable on both connected FortiGate devices?
Question #32
Refer to the exhibit, which provides information on BGP neighbors. What can you conclude from this command output?
Question #33
Which two statements about ADVPN are true? (Choose two.)
Question #34
Which statement about network processor (NP) offloading is true?
Question #35
Refer to the exhibit, which shows an error in system fortiguard configuration. What is the reason you cannot set the protocol to udp in config system fortiguard?
Question #36
Which, three conditions are required for two FortiGate devices to form an OSPF adjacency? (Choose three.)
Question #37
Refer to the exhibit, which shows a network diagram. Which IPsec phase 2 configuration should you impalement so that only one remote site is connected at any time?
Question #38
You want to configure faster failure detection for BGP. Which parameter should you enable on both connected FortiGate devices?
Question #39
Refer to the exhibit, which shows the output from the webfilter fortiguard cache dump and webfilter categories commands. Using the output, how can an administrator determine the ca...
Question #40
Which two statements about bfd are true? (Choose two)
Question #41
Winch two statements about ADVPN are true? (Choose two)
Question #42
Refer to the exhibit, which contains a partial BGP combination. You want to configure a loopback as the OGP source. Which two parameters must you set in the BGP configuration? (Cho...
Question #43
Refer to the exhibit, which shows a partial web filter profile conjuration. categorized as Social Networking?
Question #44
In which two ways does fortiManager function when it is deployed as a local FDS? (Choose two)
Question #45
Refer to the exhibit, which shows a routing table. What two options can you configure in OSPF to block the advertisement of the 10.1.10.0 prefix? (Choose two.)
Question #46
Refer to the exhibit, which shows a partial touting table. What two concisions can you draw from the corresponding FortiGate configuration? (Choose two.)
Question #47
Which ADVPN configuration must be configured using a script on fortiManager, when using VPN Manager to manage fortiGate VPN tunnels?
Question #48
You want to block access to the website ww.eicar.org using a custom IPS signature. Which custom IPS signature should you configure?
Question #49
Refer to the exhibit, which shows an ADVPN network. The client behind Spoke-1 generates traffic to the device located behind Spoke-2. Which first message does the hub send to Spoke...
Question #50
Refer to the exhibit, which contains a partial VPN configuration. What can you conclude from this configuration1?

Page 1 of 3Next

study smarter, certify faster.

Product

Browse Exams
Pricing
PDF Downloads

Resources

Blog
Glossary
Topics
FAQ
Contact Us

Legal

Terms of Service
Privacy Policy
Cookie Policy
DMCA
Refund Policy

Company

About
Contact

© 2026 NerdExam. All rights reserved.Built for IT professionals

NerdExam is a trading name of WADL Solutions Limited, a company incorporated in Hong Kong (CR# 80143234). Registered office: Unit 2904-05, 29/F, Universal Trade Centre, 3 Arbuthnot Road, Central, Hong Kong.

CompTIA, AWS, Cisco, Microsoft, Google Cloud, Oracle, VMware, and other certification names referenced on this site are trademarks of their respective owners. NerdExam is not affiliated with, endorsed by, or sponsored by any certification vendor.