ExamTopics Logo
Mail Us[email protected]
Menu
 

NSE7_OTS-7.2 Actual Exam Questions

Last updated on Jan. 6, 2025.
Vendor:Fortinet
Exam Code:NSE7_OTS-7.2
Exam Name:Fortinet NSE 7 - OT Security 7.2
Exam Questions:29
97% Passed the exam with this material
 

Topic 1 - Exam A

Question #1 Topic 1

Refer to the exhibit.

The IPS profile is added on all of the security policies on FortiGate.
For an OT network, which statement of the IPS profile is true?

  • A. FortiGate has no IPS industrial signature database enabled.
  • B. The listed IPS signatures are classified as SCADA applications.
  • C. All IPS signatures are overridden and must block traffic match signature patterns.
  • D. The IPS profile inspects only traffic originating from SCADA equipment.
Reveal Solution Hide Solution   Discussion  

Correct Answer: B 🗳️

Question #2 Topic 1

Which two statements are true when you deploy FortiGate as an offline IDS? (Choose two.)

  • A. Network traffic goes through FortiGate.
  • B. Network attacks can be detected and blocked.
  • C. FortiGate acts as network sensor.
  • D. FortiGate receives traffic from configured port mirroring.
Reveal Solution Hide Solution   Discussion  

Correct Answer: CD 🗳️

Question #3 Topic 1

Refer to the exhibit.

A new operational technology rule is being created to monitor Modbus protocol traffic on FortiSIEM.
Which action will ensure all Modbus messages on the network match the rule?

  • A. Set the Aggregate attribute value to equal to or greater than zero.
  • B. Add a new condition to filter Modbus traffic based on the Source TCP/UDP port.
  • C. This rule is valid and requires no additional changes.
  • D. Remove attributes in the Group By section that are not configured in the Filter section.
Reveal Solution Hide Solution   Discussion  

Correct Answer: B 🗳️

Question #4 Topic 1

As an OT network administrator, you are managing three FortiGate devices that each protect different levels on the Purdue model. To increase traffic visibility, you are required to implement additional security measures to detect protocols from PLCs.
Which security sensor must you implement to detect protocols on the OT network?

  • A. Antivirusinspection
  • B. Intrusion prevention system (IPS)
  • C. Application control
  • D. Deep packet inspection (DPI)
Reveal Solution Hide Solution   Discussion   2

Correct Answer: B 🗳️

file Viewing page 1 out of 8 pages.
Viewing questions 1-4 out of 29 questions
Next Questions
Browse atleast 50% to increase passing rate cup
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.
exam
Someone Bought Contributor Access for:
SY0-701
London, 1 minute ago