ExamTopics Logo
Mail Us[email protected]
Menu
Fortinet Discussions
exam questions

Exam NSE8_812 All Questions

View all questions & answers for the NSE8_812 exam
Go to Exam

Exam NSE8_812 topic 1 question 32 discussion

Actual exam question from Fortinet's NSE8_812
Question #: 32
Topic #: 1
[All NSE8_812 Questions]

A remote worker requests access to an SSH server inside the network. You deployed a ZTNA Rule to their FortiClient. You need to follow the security requirements to inspect this traffic.
Which two statements are true regarding the requirements? (Choose two.)

  • A. FortiGate can perform SSH access proxy host-key validation.
  • B. You need to configure a FortiClient SSL-VPN tunnel to inspect the SSH traffic.
  • C. SSH traffic is tunneled between the client and the access proxy over HTTPS.
  • D. Traffic is discarded as ZTNA does not support SSH connection rules.
Show Suggested Answer Hide Answer
Suggested Answer: AC 🗳️
by Viewable8041 at Sept. 5, 2023, 11:25 a.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
node345
4 months, 2 weeks ago
Selected Answer: AC
C is tricky but still correct because it says "tunneled" and not encrypted. The SSH traffic is tunneled over TCP443, but not encrypted.
upvoted 1 times
...
Viewable8041
10 months, 2 weeks ago
Selected Answer: AC
Correct https://docs.fortinet.com/document/fortigate/7.4.1/administration-guide/29927/ztna-ssh-access-proxy-example
upvoted 1 times
ac89l
5 months, 3 weeks ago
Are you sure about C because in the same link it says: When Encryption is disabled, the connection between the client and FortiGate access proxy is not encapsulated in HTTPS after the client and FortiGate connection is established. This allows for less overhead, because SSH is already a secure connection. Does this eliminate C ?
upvoted 1 times
...
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
exam
Someone Bought Contributor Access for:
SY0-701
London, 1 minute ago