ExamTopics Logo
Mail Us[email protected]
Menu
Fortinet Discussions
exam questions

Exam FCP_FGT_AD-7.4 All Questions

View all questions & answers for the FCP_FGT_AD-7.4 exam
Go to Exam

Exam FCP_FGT_AD-7.4 topic 1 question 25 discussion

Actual exam question from Fortinet's FCP_FGT_AD-7.4
Question #: 25
Topic #: 1
[All FCP_FGT_AD-7.4 Questions]

Refer to the exhibit to view the firewall policy.

Why would the firewall policy not block a well-known virus, for example eicar?

  • A. The action on the firewall policy is not set to deny.
  • B. The firewall policy is not configured in proxy-based inspection mode.
  • C. Web filter is not enabled on the firewall policy to complement the antivirus profile.
  • D. The firewall policy does not apply deep content inspection.
Show Suggested Answer Hide Answer
Suggested Answer: D 🗳️
by Beatledrew at Sept. 13, 2024, 3:35 p.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
jl2307
3 weeks, 2 days ago
Selected Answer: D
Pag. 175 For antivirus or IPS control you should use a deep-inspection profile.
upvoted 1 times
...
sxcap
1 month ago
Selected Answer: D
Deep inspection is needed to ensure good function for AV
upvoted 2 times
...
Fs4ntos
1 month, 2 weeks ago
The answer is B
upvoted 1 times
...
vuhidus
1 month, 2 weeks ago
Selected Answer: D
The firewall policy does not apply deep content inspection
upvoted 1 times
...
s4mu3l007
2 months, 1 week ago
The answer is D
upvoted 1 times
...
DBFront
2 months, 3 weeks ago
Selected Answer: D
D is the correct answer.
upvoted 1 times
...
youla5
3 months, 1 week ago
D is the correct answer.
upvoted 2 times
...
Beatledrew
3 months, 3 weeks ago
D would be the most accurate response. While Flow-Based inspection mode is limited, it still can scan viruses if they are not overly complex. SSL certificate inspection only inspects the certificate of the encrypted traffic, ensuring it is valid and not self-signed or expired. It does not decrypt the actual content of the SSL/TLS traffic, meaning that any malicious content inside encrypted HTTPS traffic will pass through without being inspected. So here, we can assume the EICAR file was accessed via HTTPS.
upvoted 4 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
exam
Someone Bought Contributor Access for:
SY0-701
London, 1 minute ago