The log message states that the connection was denied because it "failed to match a proxy-policy". In the context of ZTNA, this usually indicates that there is no matching ZTNA rule or proxy-policy allowing this connection. FortiGate uses ZTNA rules or proxy policies to control access based on the security posture and identity of the user/device.
Option A refers to local-in policies, which control traffic destined for the FortiGate itself. Since this log is about forwarding traffic, local-in policies do not apply.
Option C and Option D refer to the ZTNA server configuration and firewall policies, but the log specifically mentions the failure is related to the proxy-policy, which is managed via ZTNA rules.
B. The remote user connection does not match the ZTNA rule configuration.
upvoted 2 times
...
Log in to ExamTopics
Sign in:
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.
Upvoting a comment with a selected answer will also increase the vote count towards that answer by one.
So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.
TIGERZ44
3 months, 2 weeks agovinceandroyd
5 months, 1 week ago