nerdexam
Fortinet

NSE7_OTS-7.2 · Question #49

NSE7_OTS-7.2 Question #49: Real Exam Question with Answer & Explanation

The correct answer is A. Firewall policies should be configured on FortiGate-3 and FortiGate-4 with industrial protocol C. IT and OT networks are separated by segmentation.. Segmentation separates the IT side from the OT zones in the diagram. FortiGate-3 and FortiGate-4 sit closest to PLC/RTU traffic, so their policies must use industrial protocol sensors to inspect and control those OT flows.

Question

Refer to the exhibit. Based on the topology designed by the OT architect, which two statements about implementing OT security are true? (Choose two.)

Exhibit

NSE7_OTS-7.2 question #49 exhibit

Options

  • AFirewall policies should be configured on FortiGate-3 and FortiGate-4 with industrial protocol
  • BMicro-segmentation can be achieved only by replacing FortiGate-3 and FortiGate-4 with a pair of
  • CIT and OT networks are separated by segmentation.
  • DFortiGate-3 and FortiGate-4 devices must be in a transparent mode.

Explanation

Segmentation separates the IT side from the OT zones in the diagram. FortiGate-3 and FortiGate-4 sit closest to PLC/RTU traffic, so their policies must use industrial protocol sensors to inspect and control those OT flows.

Community Discussion

No community discussion yet for this question.

Sign up to join the discussion
Full NSE7_OTS-7.2 Practice