ExamTopics Logo
Mail Us[email protected]
Menu
Fortinet Discussions
exam questions

Exam NSE7_SDW-7.2 All Questions

View all questions & answers for the NSE7_SDW-7.2 exam
Go to Exam

Exam NSE7_SDW-7.2 topic 1 question 3 discussion

Actual exam question from Fortinet's NSE7_SDW-7.2
Question #: 3
Topic #: 1
[All NSE7_SDW-7.2 Questions]

Refer to the exhibit.

  • A. FortiGate does not change the routing information on existing sessions that use a valid gateway, after a route change.
  • B. FortiGate always blocks all traffic, after a route change.
  • C. FortiGate performs routing lookups for new sessions only, after a route change.
  • D. FortiGate flushes all routing information from the session table, after a route change.
Show Suggested Answer Hide Answer
Suggested Answer: A 🗳️
by IBB90704 at March 8, 2024, 12:48 a.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
ccie8122
2 months, 1 week ago
Selected Answer: A
A is absolutely correct. The reason C is incorrect is the word "only." The FortiGate does not "only" check routing table for new sessions. It will ALSO check routing table for existing sessions when the session gateway is down/invalid!
upvoted 2 times
...
Mellon
3 months, 1 week ago
Selected Answer: C
C is correct, A is incorrect. Routing is not depending on a session, it's a session that is depending on routing.
upvoted 1 times
ccie8122
2 months, 1 week ago
You are incorrect. See my response above.
upvoted 1 times
...
...
cgilvi
4 months, 1 week ago
I suppose that C would be right only if the traffic is NOT SNATed
upvoted 1 times
ccie8122
2 months, 1 week ago
Incorrect. C is never correct, because routing is evaluated for existing session if the gateway becomes invalid. The problem with C is the word "only" makes it incorrect.
upvoted 1 times
...
...
KZM
4 months, 1 week ago
Selected Answer: A
Based on the exhibit, which two actions does FortiGate perform on traffic passing through port2? (Choose two.) Correct answers: A, C
upvoted 1 times
ccie8122
2 months, 1 week ago
C is incorrect for the reason i state above.
upvoted 1 times
...
...
lucient
8 months, 2 weeks ago
Selected Answer: A
A is correct. But also C. Page 154.
upvoted 1 times
ccie8122
2 months, 1 week ago
Nope, "only" make C incorrect.
upvoted 1 times
...
...
truserud
8 months, 3 weeks ago
Selected Answer: A
A is correct
upvoted 1 times
...
nse_student
9 months, 1 week ago
Selected Answer: A
C is not correct, just A.
upvoted 1 times
...
alejandrofern43
9 months, 4 weeks ago
Selected Answer: A
through port2. Hub2 drops any already established TCP sessions. • With preserve-session-route enable, FortiGate does not reevaluate the session, and the session remains established through port1 and hub1. Active TCP sessions do not change. FortiGate routes new sessions through port2. pag 153 sdwan study 7.2. Y posiblemente algo de la D
upvoted 3 times
...
KavinT
10 months, 1 week ago
A & C are correct, 2 answers
upvoted 1 times
ccie8122
2 months, 1 week ago
C is incorrect. See my response above as to why.
upvoted 1 times
...
truserud
8 months, 3 weeks ago
Nope, for checking of new routes and tagging them as "dirty" you also have to configure config firewall policy set firewall-session-dirty check-new end as stated here https://community.fortinet.com/t5/FortiGate/Technical-Tip-Information-about-firewall-session-dirty/ta-p/195802 Thus only A is correct.
upvoted 1 times
lucient
8 months, 2 weeks ago
C is correct too. Page 154. "With preserve-session-route enable, FortiGate does not reevaluate the session, and the session remains established through port1 and hub1. Active TCP sessions do not change. FortiGate routes new sessions through port2." It says "FortiGate performs routing lookups for NEW SESSIONS only, after a route change. " and that's true. After the route change, old sessions stay with the old route. But for new sessions, Fortigate performs a route lookup.
upvoted 1 times
ccie8122
2 months, 1 week ago
Incorrect. With preserve-session-route enabled, FortiGate will evaluate routing not "only" for new sessions, but it WILL ALSO reevaluate routing for existing sessions if the gateway is invalid for any reason!
upvoted 1 times
...
...
...
...
ac89l
10 months, 1 week ago
Selected Answer: A
AC. There should be two answers
upvoted 2 times
...
IBB90704
10 months, 1 week ago
A y C son correctas
upvoted 1 times
ccie8122
2 months, 1 week ago
C no es correcta. La razon es que el FortiGate reevaluara "routing" por sesiones existentes que todavia no tienen "gateway" valido -- no solo por sesiones nuevas.
upvoted 1 times
...
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
exam
Someone Bought Contributor Access for:
SY0-701
London, 1 minute ago