Fortinet NSE 8 Written Exam (NSE8_811) NSE8_811 Prüfungsfragen mit Lösungen:

1. Click the exhibit.
You created an aggregate interface between your FortiGate and a switch consisting of two 1 Gbps links as shown in the exhibit. However, the maximum bandwidth never exceeds. 1 Gbps and employees are complaining that the network is slow. After troubleshooting, you notice only one member interface is being used. The configuration for the aggregate interface is shown in the exhibit.
In this scenario, which command will solve this problem?

A) config system interface
edit Agg1
set Algorithm L4
end
B) config system interface
edit Agg1
set lacp-mode active
end
C) config system interface
edit Agg1
set min-links 2
end
D) config system interface
edit Agg1
set weight 2
end

2. Click the Exhibit button.

You configured an IPsec tunnel to a branch office. Now you want to make sure that the encryption of the tunnel is offloaded to hardware.
Referring to the exhibit, which statement is true?

A) Incoming and outgoing traffic is offloaded
B) Traffic is not offloaded.
C) Outgoing traffic is offloaded: incoming traffic not offloaded.
D) Outgoing traffic is offloaded, you cannot determine if incoming traffic is offloaded at this time.

3. Click the Exhibit button.
Your customer is using dynamic routing to exchange the default route between two FortiGates using OSPFv2. The output of the get router info ospf neighbor command shows that the neighbor is up, but the default route does not appear in the routing neighbor shown below:

According to the exhibit, what is causing the problem?

A) FG2 is within the wrong OSPF area.
B) OSPF requires the redistribution of connected networks.
C) There is an OSPF interface network-type mismatch.
D) A prefix for the detail route is missing

4. You must create a high Availability deployment with two FortiWebs in Amazon Services (AWS): each on different Availability Zones(AZ) from the same region. At the same time, each FortiWeb should be able to deliver content from the Web server of both of the AZs. Which deployment would will this requirement?

A) Use AWS Router 53 to load balance FortiWebs in standone mode and use AWS Virtual private Cloud (VPC) peering to load balance the internal Web servers.
B) Configure the FortiWebs Active-Active Ha mode and use AWS Router 53 load Router balance the internal Web servers.
C) Use AWS Elastic load Balancer (ELB) for both FortiWebs in standdone mode and the internal Web servers in an ELB sandwich.
D) Configure the FortiWebs in Active-Active HA mode and use AWS Elastic load Balancer (ELB) for the internal Web servers.

5. Refer to the exhibit.

You log into FortiManager, access the Device Manager window and notice that one of the managed devices is not in normal status.
Referring to the exhibit, which two statements correctly describe the status and result of the affected device? (Choose two.)

A) The changed configuration on the FortiGate will be overwritten in favor of what is on the FortiManager the next time that the device configuration is pushed.
B) The changed configuration on the FortiGate will remain the next time that the device configuration is
pushed from FortiManager.
C) The device configuration was changed on the local FortiGate side only; auto-update is disabled.
D) The device configuration was changed on both the local FortiGate side and the FortiManager side; autoupdate is disabled.

Fragen und Antworten: