ExamTopics Logo
Mail Us[email protected]
Menu
Fortinet Discussions
exam questions

Exam NSE7_EFW-7.2 All Questions

View all questions & answers for the NSE7_EFW-7.2 exam
Go to Exam

Exam NSE7_EFW-7.2 topic 1 question 51 discussion

Actual exam question from Fortinet's NSE7_EFW-7.2
Question #: 51
Topic #: 1
[All NSE7_EFW-7.2 Questions]

Refer to the exhibit, which shows a network diagram.



Which IPSec phase 2 configuration should you implement so that only one remote site is connected at any time?

  • A. Set net-device to enable.
  • B. Set route-overlap to allow.
  • C. Set single-source to enable.
  • D. Set route-overlap to either use-new or use-old.
Show Suggested Answer Hide Answer
Suggested Answer: D 🗳️
by dsticht at May 29, 2024, 4:18 p.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
myrmidon3
4 months, 2 weeks ago
Selected Answer: D
route-overlap settings and their behavior: use-new (default): Disconnects the existing VPN and accepts the new one. use-old: Keeps the existing VPN and rejects the new connection. allow: Keeps both VPNs and allows traffic balancing between them using ECMP (Equal-Cost Multi-Path). Answer in context: If the goal is to ensure that only one remote site is connected at a time, the most appropriate configuration would be to use use-new or use-old.
upvoted 1 times
...
charruco
11 months, 3 weeks ago
Selected Answer: D
D is correct Study Guide 7.2 Page 315
upvoted 1 times
...
GCISystemIntegrator
1 year ago
Selected Answer: D
agree study guide 315
upvoted 2 times
...
dsticht
1 year ago
Selected Answer: D
p315 of Study Guide
upvoted 4 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel