Fortinet NSE 5 - FortiManager 6.4 NSE5_FMG-6.4 Dumps in PDF

Free Fortinet NSE5_FMG-6.4 Real Questions (page: 7)

Which configuration setting for FortiGate is part of a device-level database on FortiManager?

  1. VIP and IP Pools
  2. Firewall policies
  3. Security profiles
  4. Routing

Answer(s): D

Explanation:

The FortiManager stores the FortiGate configuration details in two distinct databases. The device-level database includes configuration details related to device-level settings, such as interfaces, DNS, routing, and more. The ADOM-level database includes configuration details related to firewall policies, objects, and security profiles.



Refer to the exhibit.



Which two statements about the output are true? (Choose two.)

  1. The latest revision history for the managed FortiGate does match with the FortiGate running configuration
  2. Configuration changes have been installed to FortiGate and represents FortiGate configuration has been changed
  3. The latest history for the managed FortiGate does not match with the device-level database
  4. Configuration changes directly made on the FortiGate have been automatically updated to device-level
    database

Answer(s): A,C

Explanation:

STATUS: dev-db: modified; conf: in sync; cond: pending; dm: retrieved; conn: up­ dev-db: modified ­ This is the device setting status which indicates that configuration changes were made on FortiManager.­ conf: in sync ­ This is the sync status which shows that the latest revision history is in sync with Fortigate's configuration.­ cond: pending ­ This is the configuration status which says that configuration changes need to be installed.
Most probably a retrieve was done in the past (dm: retrieved) updating the revision history DB (conf: in sync) and FortiManager device level DB, now there is a new modification on FortiManager device level DB (dev-db: modified) which wasn't installed to FortiGate (cond: pending), hence; revision history DB is not aware of that modification and doesn't match device DB.
Conclusion:­ Revision DB does match FortiGate.­ No changes were installed to FortiGate yet.­ Device DB doesn't match Revision DB.­ No changes were done on FortiGate (auto-update) but configuration was retrieved instead After an Auto-Update or Retrieve:device database = latest revision = FGT Then after a manual change on FMG end (but no install yet):latest revision = FGT (still) but now device database has been modified (is different). After reverting to a previous revision in revision history:device database = reverted revision != FGT



An administrator would like to review, approve, or reject all the firewall policy changes made by the junior administrators.

How should the Workspace mode be configured on FortiManager?

  1. Set to workflow and use the ADOM locking feature
  2. Set to read/write and use the policy locking feature
  3. Set to normal and use the policy locking feature
  4. Set to disable and use the policy locking feature

Answer(s): A


Reference:

https://help.fortinet.com/fmgr/50hlp/52/5-2- 0/FMG_520_Online_Help/200_What's-New.03.03.html



Which two settings must be configured for SD-WAN Central Management? (Choose two.)

  1. SD-WAN must be enabled on per-ADOM basis
  2. You can create multiple SD-WAN interfaces per VDOM
  3. When you configure an SD-WAN, you must specify at least two member interfaces.
  4. The first step in creating an SD-WAN using FortiManager is to create two SD-WAN firewall policies.

Answer(s): A,C



When an installation is performed from FortiManager, what is the recovery logic used between FortiManager and FortiGate for an FGFM tunnel?

  1. After 15 minutes, FortiGate will unset all CLI commands that were part of the installation that caused the tunnel to go down.
  2. FortiManager will revert and install a previous configuration revision on the managed FortiGate.
  3. FortiGate will reject the CLI commands that will cause the tunnel to go down.
  4. FortiManager will not push the CLI commands as a part of the installation that will cause the tunnel to go down.

Answer(s): A


Reference:

https://fortinetweb.s3.amazonaws.com/docs.fortinet.com/v2/attachments/067f5236-ca6d- 11e9-8977-00505692583a/FGFM-6.2-Communications_Protocol_Guide.pdf page 17



Share your comments for Fortinet NSE5_FMG-6.4 exam with other users:

M
Mirex
5/26/2023 3:45:00 AM

am preparing for exam ,just nice questions

E
exampei
8/7/2023 8:05:00 AM

please upload c_tadm_23 exam

A
Anonymous
9/12/2023 12:50:00 PM

can we get tdvan4 vantage data engineering pdf?

A
Aish
10/11/2023 5:51:00 AM

want to clear the exam.

S
Smaranika
6/22/2023 8:42:00 AM

could you please upload the dumps of sap c_sac_2302

B
Blessious Phiri
8/15/2023 1:56:00 PM

asm management configuration is about storage

L
Lewis
7/6/2023 8:49:00 PM

kool thumb up

M
Moreece
5/15/2023 8:44:00 AM

just passed the az-500 exam this last friday. most of the questions in this exam dumps are in the exam. i bought the full version and noticed some of the questions which were answered wrong in the free version are all corrected in the full version. this site is good but i wish the had it in an interactive version like a test engine simulator.

T
Terry
5/24/2023 4:41:00 PM

i can practice for exam

E
Emerys
7/29/2023 6:55:00 AM

please i need this exam.

G
Goni Mala
9/2/2023 12:27:00 PM

i need the dump

L
Lenny
9/29/2023 11:30:00 AM

i want it bad, even if cs6 maybe retired, i want to learn cs6

M
MilfSlayer
12/28/2023 8:32:00 PM

i hate comptia with all my heart with their "choose the best" answer format as an argument could be made on every question. they say "the "comptia way", lmao no this right here boys is the comptia way 100%. take it from someone whos failed this exam twice but can configure an entire complex network that these are the questions that are on the test 100% no questions asked. the pbqs are dead on! nice work

S
Swati Raj
11/14/2023 6:28:00 AM

very good materials

K
Ko Htet
10/17/2023 1:28:00 AM

thanks for your support.

P
Philippe
1/22/2023 10:24:00 AM

iam impressed with the quality of these dumps. they questions and answers were easy to understand and the xengine app was very helpful to use.

S
Sam
8/31/2023 10:32:00 AM

not bad but you question database from isaca

B
Brijesh kr
6/29/2023 4:07:00 AM

awesome contents

J
JM
12/19/2023 1:22:00 PM

answer to 134 is casb. while data loss prevention is the goal, in order to implement dlp in cloud applications you need to deploy a casb.

N
Neo
7/26/2023 9:36:00 AM

are these brain dumps sufficient enough to go write exam after practicing them? or does one need more material this wont be enough?

B
Bilal
8/22/2023 6:33:00 AM

i did attend the required cources and i need to be sure that i am ready to take the exam, i would ask you please to share the questions, to be sure that i am fit to proceed with taking the exam.

J
John
11/12/2023 8:48:00 PM

why only give explanations on some, and not all questions and their respective answers?

B
Biswa
11/20/2023 8:50:00 AM

refresh db knowledge

S
Shalini Sharma
10/17/2023 8:29:00 AM

interested for sap certification

E
ethan
9/24/2023 12:38:00 PM

could you please upload practice questions for scr exam ?

V
vijay joshi
8/19/2023 3:15:00 AM

please upload free oracle cloud infrastructure 2023 foundations associate exam braindumps

A
Ayodele Talabi
8/25/2023 9:25:00 PM

sweating! they are tricky

R
Romero
3/23/2022 4:20:00 PM

i never use these dumps sites but i had to do it for this exam as it is impossible to pass without using these question dumps.

J
John Kennedy
9/20/2023 3:33:00 AM

good practice and well sites.

N
Nenad
7/12/2022 11:05:00 PM

passed my first exam last week and pass the second exam this morning. thank you sir for all the help and these brian dumps.

L
Lucky
10/31/2023 2:01:00 PM

does anyone who attended exam csa 8.8, can confirm these questions are really coming ? or these are just for practicing?

P
Prateek
9/18/2023 11:13:00 AM

kindly share the dumps

I
Irfan
11/25/2023 1:26:00 AM

very nice content

P
php
6/16/2023 12:49:00 AM

passed today

AI Tutor 👋 I’m here to help!