Answer: D
Explanation: Logs are received then they are indexed, no logging server in the world can index logs faster than they are received. When FAZ receives raw logs, they are inserted (indexed) by the SQL database and the sqlplugind daemon, this graph shows that FAZ received 3 logs and sqlplugind indexed 4.
https://docs.fortinet.com/document/fortianalyzer/6.2.5/administration-guide/47690/insert-rate-vs-
I am correcting , answer is B please check the below link
Hello,
I took the exam in version 6.0, I failed it in the logging section and I got a similar question, but the time of the analysis was 14:55 not 14:35. I still have the doubt, I have the doubt between answer B and D. I cannot find any reference in the study guide to corroborate the answer.
Please, if anyone has any reference to know what happens at 14:55 I would appreciate it infinitely
I got the same exam couple of days ago, my answer was D and I passed the exam.
You will find a similar part in the study guide 6.2 and the answer is there.
The correct answer will be B
Raw logs are received and then that log is indexed. So indexing can never be ahead of logs received. But it can be that at a certain point in time logs are being indexed faster than they are received.
If you look at the study guide you will notice that there is something called Insert Lag Time. And in this example it’s between 30-50 seconds. The point is the indexing of the logs can’t be ahead if it gets processed a few seconds later.
A voting comment increases the vote count for the chosen answer by one.
Upvoting a comment with a selected answer will also increase the vote count towards that answer by one.
So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.
ZOKOF
Highly Voted 4 years, 8 months agomeccorn
Most Recent 2 years, 10 months agomeccorn
2 years, 10 months agoAndres21216
4 years, 3 months agodawa
4 years, 1 month agoDee244
4 years, 1 month agoGary1020
4 years, 8 months ago