Fortinet nse6-fsw-7-2 practice test

fortinet nse 6 - fortiswitch 7.2

Last exam update: Dec 14 ,2024
Page 1 out of 3. Viewing questions 1-10 out of 26

Question 1

An administrator needs to deploy managed FortiSwitch devices in a remote location where multiple VLANs must be utilized to segment devices. No Layer 3 switch or router is present. The only WAN connectivity is the router provided by the ISP connected to the public internet.
Which two items will the administrator need to use? (Choose two.)

  • A. A FortiSwitch interface connected to the ISP router configured with fortilink-13-mode enabled.
  • B. FortiSwitch and FortiGate devices configured with VXLAN interfaces.
  • C. FortiSwitch devices configured with NAT disabled.
  • D. FortiSwitch devices that have the required internal hardware for this configuration.
  • E. FortiSwitch and FortiGate devices configured with IPsec interfaces.
Mark Question:
Answer:

be

User Votes:
A
50%
B
50%
C
50%
D
50%
E
50%
Discussions
vote your answer:
A
B
C
D
E
0 / 1000

Question 2

What are two ways in which automatic MAC address quarantine works on FortiSwitch? (Choose two.)

  • A. FortiSwitch supports only by VLAN quarantine mode.
  • B. FortiGate applies the quarantine-related configuration only on FortiGate.
  • C. FortiAnalyzer with a threat detection services license is required.
  • D. MAC address quarantine can be enabled through the FortiGate CLI only.
Mark Question:
Answer:

ad

User Votes:
A
50%
B
50%
C
50%
D
50%
Discussions
vote your answer:
A
B
C
D
0 / 1000

Question 3

Which statement about the quarantine VLAN on FortiSwitch is true?

  • A. Quarantine VLAN has no DHCP server.
  • B. Users who fail 802.1X authentication can be placed on the quarantine VLAN.
  • C. It is only used for quarantined devices if global setting is set to quarantine by VLAN.
  • D. FortiSwitch can block devices without configuring quarantine VLAN to be part of the allowed VLANs.
Mark Question:
Answer:

b

User Votes:
A
50%
B
50%
C
50%
D
50%
Discussions
vote your answer:
A
B
C
D
0 / 1000

Question 4

Which LLDP-MED Type-Length-Values does FortiSwitch collect from endpoints to track network devices and determine their characteristics?

  • A. Network policy
  • B. Power management
  • C. Location
  • D. Inventory management
Mark Question:
Answer:

a

User Votes:
A
50%
B
50%
C
50%
D
50%
Discussions
vote your answer:
A
B
C
D
0 / 1000

Question 5

Refer to the exhibit.

Which two statements best describe what is displayed in the FortiLink debug output shown in the exhibit? (Choose two.)

  • A. FortiSwitch is sending FortiLink heartbeats to FortiGate.
  • B. FortiSwitch is discovered and authorized by FortiGate.
  • C. FortiSwitch is in a waiting state to join the stack group on FortiGate.
  • D. FortiSwitch is ready to push its new hostname to FortiGate.
Mark Question:
Answer:

ac

User Votes:
A
50%
B
50%
C
50%
D
50%
Discussions
vote your answer:
A
B
C
D
0 / 1000

Question 6

Which two rules used by MSTP are similar to rules used by other STP methods? (Choose two.)

  • A. MSTP uses port role election, similar to rapid STP on the instances.
  • B. MSTP uses alternate path and primary path, similar to regular STP.
  • C. MSTP uses root bridge selection, similar to rapid STP.
  • D. MSTP uses timers for transitioning the ports, similar to regular STP.
Mark Question:
Answer:

cd

User Votes:
A
50%
B
50%
C
50%
D
50%
Discussions
vote your answer:
A
B
C
D
0 / 1000

Question 7

Which two types of Layer 3 interfaces can participate in dynamic routing on FortiSwitch? (Choose two.)

  • A. Detected management interfaces
  • B. Loopback interfaces
  • C. Switch virtual interfaces
  • D. Physical interfaces
Mark Question:
Answer:

bc

User Votes:
A
50%
B
50%
C
50%
D
50%
Discussions
vote your answer:
A
B
C
D
0 / 1000

Question 8

Which packet capture method allows FortiSwitch to capture traffic on trunks and management interfaces?

  • A. SPAN
  • B. Sniffer profile
  • C. sFlow
  • D. TCP dump
Mark Question:
Answer:

b

User Votes:
A
50%
B
50%
C
50%
D
50%
Discussions
vote your answer:
A
B
C
D
0 / 1000

Question 9

Refer to the exhibits.



Traffic arriving on port2 on FortiSwitch is tagged with VLAN ID 10 and destined for
PC1 connected on port1. PC1 expects to receive traffic untagged from port1 on FortiSwitch.
Which two configurations can you perform on FortiSwitch to ensure PC1 receives untagged traffic on port1? (Choose two.)

  • A. Add the MAC address of PC1 as a member of VLAN 10.
  • B. Add VLAN ID 10 as a member of the untagged VLANs on port1
  • C. Remove VLAN 10 from the allowed VLANs and add it to untagged VLANs on port1
  • D. Enable Private VLAN on VLAN 10 and add VLAN 20 as an isolated VLAN.
Mark Question:
Answer:

bc

User Votes:
A
50%
B
50%
C
50%
D
50%
Discussions
vote your answer:
A
B
C
D
0 / 1000

Question 10

How does FortiGate handle configuration of flow tracking sampling if you export the settings to a managed FortiSwitch stack with sampling mode set to perimeter is true?

  • A. FortiGate configures FortiSwitch to perform ingress sampling on all switch interfaces.
  • B. FortiGate configures FortiSwitch to perform ingress sampling on all switch interfaces, except ICL and ISL interfaces.
  • C. FortiGate configures and enables flow sampling on FortiSwitch but does not change existing sampling settings of interfaces
  • D. FortiGate configures and enables egress sampling on all management interfaces.
Mark Question:
Answer:

b

User Votes:
A
50%
B
50%
C
50%
D
50%
Discussions
vote your answer:
A
B
C
D
0 / 1000
To page 2