Which two statements are true regarding log fetching on FortiAnalyzer? (Choose two.)
A.
Log fetching allows the administrator to fetch analytics logs from another FortiAnalyzer for redundancy.
B.
Log fetching allows the administrator to run queries and reports against historical data by retrieving archived logs from one FortiAnalyzer device and sending them to another FortiAnalyzer device.
C.
A FortiAnalyzer device can perform either the fetch server or client role, and it can perform two roles at the same time with the same FortiAnalyzer devices at the other end.
D.
Log fetching can be done only on two FortiAnalyzer devices that are running the same firmware version.
A FortiAnalyzer device can be either the fetch server or the fetching client, and it can perform both roles at the same time with DIFFERENT FortiAnalyzer devices. (not same devices). So i think C incorrect
C is incorrect:
"A FortiAnalyzer device can be either the fetch server or the fetching client, and it can perform both roles at the same time with different FortiAnalyzer devices."
Choice C states *same* devices at other end.
A is wrong because Log fetching don't fetch ANALYTICS logs, instead archived logs.
B is wrong because Log fetching don't query reports nor analytics logs.
According the article https://docs.fortinet.com/document/fortianalyzer/7.4.2/administration-guide/651442/log-fetching and FortiAnalyzer Analyst Study Guide for FortiAnalyzer 7.2, p. 77-78, C and D are correct.
A voting comment increases the vote count for the chosen answer by one.
Upvoting a comment with a selected answer will also increase the vote count towards that answer by one.
So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.
DCT
Highly Voted 9 months, 2 weeks agom_beluy
8 months, 3 weeks agoHalmonte0780
Most Recent 6 months, 2 weeks ago77DVD
7 months ago[Removed]
7 months, 4 weeks agoDCT
9 months, 2 weeks ago