Marcos Avila
Quiz by , created more than 1 year ago

NSE4 6.0 NSE4 6.0 Quiz on HA I, created by Marcos Avila on 01/08/2018.

15
1
0
Marcos Avila
Created by Marcos Avila almost 6 years ago
Close

HA I

Question 1 of 17

1

HA Operation modes

Select one of the following:

  • active-active
    active-passive

  • passive-passive
    passive-active

Explanation

Question 2 of 17

1

one of the main differences in the active-passive mode:

Select one of the following:

  • is that in the active-active mode, all of the FortiGate devices are processing traffic. One of the tasks of a primary FortiGate in active-active mode is to balance some of the traffic among all the secondary devices.

  • is that in the active-passive mode, all of the FortiGate devices are processing traffic. One of the tasks of a primary FortiGate in active-passive mode is to balance some of the traffic among all the secondary devices.

Explanation

Question 3 of 17

1

FGCP

Select one of the following:

  • Fortigate Clustering Protocol

  • Fortinet Gateway Clustering Protocol

Explanation

Question 4 of 17

1

FGCP run over the hearbeat links and FortiASIC NPE interfaces.

Select one of the following:

  • True
  • False

Explanation

Question 5 of 17

1

FGCP use:

Select one of the following:

  • TCP Port 703
    TCP Port 23

  • TCP Port 723
    TCP Port 203

Explanation

Question 6 of 17

1

TCP Port 23 and TCP Port 703 user what types of ethernet type values?

Select one of the following:

  • TCP Port 703:
    0x8890 - NAT mode
    0x8891 - Transparent mode

    TCP Port 23:
    0x8893 - Configuration synchronization

  • TCP Port 23:
    0x8890 - NAT mode
    0x8891 - Transparent mode

    TCP Port 703:
    0x8893 - Configuration synchronization

Explanation

Question 7 of 17

1

FortiGate HA configuration requires a specific set up and devices. First, at least two, but up to four, FortiGate devices with the same: (Select 4)

Select one or more of the following:

  • Firmware

  • Hardware model and VM license FortiGuard , FortiCloud, and FortiClient licenses

  • Hard drive capacity and partitions

  • Operating mode (transparent or NAT)

  • FortiOS

  • VPN configuration

  • Inspection mode (flow based or proxy mode)

Explanation

Question 8 of 17

1

What if one of the FortiGate device has a lower level of licensing than other FortiGate devices in the cluster?

Select one of the following:

  • All of the FortiGates in the cluster will revert to that lower licensing level. For example, if you only purchase FortiGuard Web Filtering for one of the FortiGate devices in a cluster, when the cluster is operating, none of the cluster members will support FortiGuard Web Filtering.

  • All of the FortiGates in the cluster will revert to the maximum licensing level. For example, if you purchase FortiGuard Web Filtering for one of the FortiGate devices in a cluster, when the cluster is operating, all of the cluster members will support FortiGuard Web Filtering.

Explanation

Question 9 of 17

1

HA communication is called:

Select one of the following:

  • hearbeat traffic

  • FGCP

  • High Availability

Explanation

Question 10 of 17

1

For redundancy, how many hearbeat interfaces can be created?

Select one of the following:

  • Up to eight

  • Up to ten

  • Up to six

Explanation

Question 11 of 17

1

As a best practice (and Fortinet recommendation), configure the FortiGate interfaces with DHCP addresses when forming an HA cluster. Once an HA is formed, you can configure the DHCP or PPPoE addressing for an interface. If an interface is configured for static addresses, enabling HA may result in the interface receiving an incorrect address, or not being able to connect to the server correctly.

Select one of the following:

  • True
  • False

Explanation

Question 12 of 17

1

1-
2-
3-
4-

Drag and drop to complete the text.

    Connected monitored ports
    HA Uptime
    Priority
    Serial Number

Explanation

Question 13 of 17

1

1- - The cluster first compares the number of monitored interfaces whose statuses are up. The FortiGate device with the most available monitored interfaces becomes the primary.

2- - The cluster compares the HA uptimes of the individual devices. If the HA uptime of a device is at least five minutes more than the HA uptimes of the other FortiGates, it becomes the primary.

3- - The FortiGate with the configured highest priority becomes the primary.

4- - The cluster chooses the primary by comparing the serial numbers.

Drag and drop to complete the text.

    Connected monitored ports
    HA Uptime
    Priority
    Serial number

Explanation

Question 14 of 17

1

Command to force a failover event:

Select one of the following:

  • diagnose sys ha reset - uptime

  • diagnose ha sys reset - uptime

Explanation

Question 15 of 17

1

Force a failover with override enable

Select one of the following:

  • diagnose sys ha reset-uptime

  • Change HA priority

Explanation

Question 16 of 17

1

To form an HA cluster, all FortiGate devices that will be included in the cluster must have which of the following?

Select one of the following:

  • a. The same FortiGate hostname

  • b. The same firmware

Explanation

Question 17 of 17

1

What is the default criteria (override disabled) for selecting the high availability (HA) primary device in an HA cluster?

Select one of the following:

  • a. Connected monitored ports > HA uptime > priority > serial number

  • b. Priority > HA uptime > connected monitored ports > serial number

Explanation

Previous
Check answer
Next