ExamTopics Logo
Mail Us[email protected]
Menu
Fortinet Discussions
exam questions

Exam NSE5_FMG-7.2 All Questions

View all questions & answers for the NSE5_FMG-7.2 exam
Go to Exam

Exam NSE5_FMG-7.2 topic 1 question 24 discussion

Actual exam question from Fortinet's NSE5_FMG-7.2
Question #: 24
Topic #: 1
[All NSE5_FMG-7.2 Questions]

Refer to the exhibit.

If both FortiManager and FortiGate are behind the NAT devices, what are the two expected results? (Choose two.)

  • A. During discovery, the FortiManager NATed IP address is not set by default on FortiGate.
  • B. If the FGFM tunnel is torn down, FortiManager will try to re-establish the FGFM tunnel.
  • C. FortiGate is discovered by FortiManager through the FortiGate NATed IP address.
  • D. FortiGate can announce itself to FortiManager only if the FortiManager non-NATed IP address is configured on FortiGate under central management.
Show Suggested Answer Hide Answer
Suggested Answer: AC 🗳️
by talix at Jan. 16, 2024, 11:21 p.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
GeniusA
Highly Voted 10 months, 1 week ago
AC is the correct answer
upvoted 5 times
...
talix
Highly Voted 10 months, 3 weeks ago
A and C... page 279
upvoted 5 times
...
Redrum702
Most Recent 6 months, 2 weeks ago
AC: B is wrong: FortiManager doesn't automatically attempt to reestablish the FGFM tunnel if it is torn down.
upvoted 1 times
...
GoodServant
7 months ago
Selected Answer: BC
Look at the study guide on page 277 and 279, it clearly states that when the FMG is behind a NATed IP, then it is ONLY the FMG that can discover a new device, and also is the only one that can re-establish the FGFM tunnel after it is torn down. Literally stated on the first paragraph of page 277. Page 279 where both are NATed, affirms that the scenario plays out exactly the same as when only the FMG was NATed. What I don't like about the question, is that A is also true, but only by deductive reasoning. So B and C are the better choices as they are clearly stated in the study guide as such.
upvoted 1 times
...
jfff
7 months, 4 weeks ago
Selected Answer: AC
AC is the correct answer ortiManager does not attempt to reestablish the FGFM tunnel to the FortiGate
upvoted 2 times
...
DatBroNZ
10 months, 3 weeks ago
Selected Answer: AC
Tricky one. It seems three answers are valid: A. Correct. It can be configured on the FortiGate, but it is not by default. B. Wrong. FortiManager does not attempt to reestablish the FGFM tunnel to the FortiGate NATed IP address. C. Correct. D. Correct.
upvoted 3 times
TTOG
10 months, 1 week ago
D says "non-NATed", Fortigate wont be able to reach that address
upvoted 1 times
...
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel