Fortinet NSE6_FSW-7.2 Exam Practice Test Instant Access

Question 1

Which two statements about managing a FortiSwitch stack on FortiGate are true? (Choose two.)

AA FortiLink interface must be enabled on FortiGate.

BThe switch controller feature must be enabled on FortiGate.

COnly a hardware-based FortiGate can manage a FortiSwitch stack.

DFortiSwitch must be operating in standalone mode before authorization.

Answer : A, B

Question 2

Which two statements about 802.1X authentication on FortiSwitch ports are true? (Choose two.)

AAll hosts behind an authenticated port are allowed access after a successful authentica-tion.

BA security policy is used to apply 802.1 authentication on a port.

CA local user database must be used to authenticate devices using the 802.1X authentica-tion protocol.

DAll devices connecting to FortiSwitch must support 802.1X authentication.

Answer : A, B

Question 3

What type of multimode transceiver can be used to split a 40G port?

AQSFP+ transceiver

BSFP transceiver

CQSFP transceiver

DSFP+ transceiver

Answer : A

Question 4

How does FortiSwitch perform actions on ingress and egress traffic using the access control list (ACL)?

AOnly high-end FortiSwitch models support ACL.

BACL can be used only at the prelookup stage in the traffic processing pipeline.

CClassifiers enable matching traffic based only on the VLAN ID.

DFortiSwitch checks ACL policies only from top to bottom.

Answer : D

Question 5

Refer to the configuration:

Which two conditions does FortiSwitch need to meet to successfully configure the options shown in the exhibit above? (Choose two.)

AThe FortiSwitch model is equipped with a maximum of 54 interfaces

BFortiSwitch would need to be rebooted.

CThe split port can be assigned to a native VLAN.

DThe Dort full speed prior to the split was 100G QSFP+.

Answer : A, B

Question 6

Which interfaces on FortiSwitch send out FortiLink discovery frames by default in order to detect a FortiGate with an enabled FortiLink interface?

AAll ports have auto-discovery enabled by default.

BNo ports are enabled by default for auto-discovery. This must be configured under config switch interface.

CThe ports with auto-discovery enabled by default are dependent upon the FortiSwitch model.

DThe last four switch ports on FortiSwitch have auto-discovery enabled by default.

Answer : A

Question 7

Refer to the diagnostic output:

What makes the use of the sniffer command on the FortiSwitch CLI unreliable on__port__23?

AThe types of packets captured is limited.

BJust the port egress payloads are printed on CLI.

COnly untagged VLAN traffic can be captured.

DThe switch port might be used as a trunk member

Answer : A

Fortinet NSE6_FSW-7.2 Fortinet NSE 6 - FortiSwitch 7.2 Exam Practice Test