exam questions

Exam NSE4_FGT-7.0 All Questions

View all questions & answers for the NSE4_FGT-7.0 exam

Exam NSE4_FGT-7.0 topic 1 question 47 discussion

Actual exam question from Fortinet's NSE4_FGT-7.0
Question #: 47
Topic #: 1
[All NSE4_FGT-7.0 Questions]

By default, FortiGate is configured to use HTTPS when performing live web filtering with FortiGuard servers.
Which CLI command will cause FortiGate to use an unreliable protocol to communicate with FortiGuard servers for live web filtering?

  • A. set fortiguard-anycast disable
  • B. set webfilter-force-off disable
  • C. set webfilter-cache disable
  • D. set protocol tcp
Show Suggested Answer Hide Answer
Suggested Answer: A 🗳️

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
JustDownload
Highly Voted 1 year, 4 months ago
there is an error it should be answer A and D but with "set protocol udp" and not tcp.
upvoted 22 times
...
breakanimal
Highly Voted 1 year, 4 months ago
Selected Answer: A
Only A should be valid, as far as I understand.
upvoted 12 times
...
Rian
Most Recent 3 months, 2 weeks ago
Its D. set protocol tcp!
upvoted 1 times
...
raydel92
4 months, 1 week ago
Selected Answer: A
A. set fortiguard-anycast disable FortiGate Security 7.2 Study Guide (p.288): "By default, FortiGate is configured to enforce the use of HTTPS port 443 to perform live filtering with FortiGuard or FortiManager. Other ports and protocols are available by disabling the FortiGuard anycast setting on the CLI." Reference and download study guide: https://ebin.pub/fortinet-fortigate-security-study-guide-for-fortios-72.html
upvoted 1 times
...
jarz
6 months, 3 weeks ago
Selected Answer: A
The question is only asking for a single answer, TCP to is a reliable transport protocol so whom ever is choosing this needs to think about a career change.
upvoted 1 times
...
joeytrib
7 months, 3 weeks ago
Selected Answer: A
A is the correct answer
upvoted 1 times
...
hamidreza0010
10 months, 3 weeks ago
Selected Answer: A
A correct
upvoted 2 times
...
Fabio6699
1 year ago
Selected Answer: A
Only A is correct. The question states unreliable (UDP). There is only 1 correct answer for this one.
upvoted 2 times
...
drumigue
1 year, 1 month ago
Selected Answer: A
A is correct
upvoted 2 times
...
SisCCA
1 year, 1 month ago
Tcp is not unreliable, should be only the A.
upvoted 1 times
...
giulianorco
1 year, 1 month ago
Selected Answer: A
config system fortiguard set fortiguard-anycast disable set protocol udp set port 53 end
upvoted 3 times
...
gg25gg
1 year, 1 month ago
Selected Answer: A
Should be A
upvoted 1 times
...
fortinc
1 year, 2 months ago
A, FortiGate security 7.0 Study Guide, page 422.
upvoted 4 times
BUZOMD
10 months, 1 week ago
The trick is when mentioned in these page "other ports and protocols are available by diasabling the fortiguard anycast setting on the cli" These refeer diferent to HTTPS port 443, because this is by default
upvoted 1 times
...
...
Yuito
1 year, 3 months ago
By default, "fortiguard-anycast" is enabled, and this setting only works with "set protocol https". To use udp (ie. "set protocol udp"), "fortiguard-anycast" must be disabled.
upvoted 1 times
...
Kutchek
1 year, 3 months ago
Selected Answer: A
"By default, FortiGate is configured to enforce the use of HTTPS port 443 to perform live filtering with FortiGuard or FortiManager. Other ports and protocols are available by disabling the FortiGuard anycast setting on the CLI." Fortigate Security Study Guide v7.0, Page 417
upvoted 3 times
...
nomeursy
1 year, 3 months ago
Selected Answer: A
Only asking for one answer so A
upvoted 2 times
...
Febrian
1 year, 4 months ago
The answer is only A, but if D is 'set protocol udp' not tcp is also correct
upvoted 2 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
Loading ...
exam
Someone Bought Contributor Access for:
SY0-701
London, 1 minute ago