ExamTopics Logo
Mail Us[email protected]
Menu
Fortinet Discussions
exam questions

Exam FCP_FGT_AD-7.4 All Questions

View all questions & answers for the FCP_FGT_AD-7.4 exam
Go to Exam

Exam FCP_FGT_AD-7.4 topic 1 question 9 discussion

Actual exam question from Fortinet's FCP_FGT_AD-7.4
Question #: 9
Topic #: 1
[All FCP_FGT_AD-7.4 Questions]

Refer to the exhibit.

The exhibit shows the FortiGuard Category Based Filter section of a corporate web filter profile.
An administrator must block access to download.com, which belongs to the Freeware and Software Downloads category. The administrator must also allow other websites in the same category.
What are two solutions for satisfying the requirement? (Choose two.)

  • A. Configure a separate firewall policy with action Deny and an FQDN address object for *.download.com as destination address.
  • B. Set the Freeware and Software Downloads category Action to Warning.
  • C. Configure a web override rating for download.com and select Malicious Websites as the subcategory.
  • D. Configure a static URL filter entry for download.com with Type and Action set to Wildcard and Block, respectively.
Show Suggested Answer Hide Answer
Suggested Answer: CD 🗳️
by andres8h at Aug. 30, 2024, 10:34 p.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
dirkdigs
4 weeks, 1 day ago
Selected Answer: AD
Fortinet Best Practice: Fortinet recommends using Static URL Filter or FQDN objects in policy when you want precise control over specific domains, even if they belong to allowed categories.
upvoted 1 times
...
SingSingHK
5 months, 1 week ago
Selected Answer: CD
A - mostly does not work ... wildcard URL address object matching is very straight forward & limiting, and it simply won't match actual download site that it may redirecting user.
upvoted 2 times
...
rigonet
5 months, 2 weeks ago
Selected Answer: CD
Correct answer: Use C and D for a more direct and efficient solution. A. Incorrect: A separate firewall policy for *.download.com would work but is less efficient for this specific case. B. Incorrect: Setting the category to "Warning" does not block download.com. C. Correct: A web rating override reclassifies download.com as "Malicious Websites," blocking it without affecting the rest of the category. D. Correct: A static URL filter blocks download.com specifically while keeping other sites in the same category accessible.
upvoted 2 times
...
sxcap
5 months, 3 weeks ago
Selected Answer: CD
You can create a web rating override to change the website category to someone that is blocked in the web filter profile You can enable the URL Filter in the Web Filter Profile and block the website
upvoted 3 times
...
abd_ethio
6 months, 3 weeks ago
CD is correct
upvoted 3 times
...
s4mu3l007
6 months, 3 weeks ago
C & D IS CORRECT
upvoted 3 times
...
0d6e481
7 months, 3 weeks ago
I agree with C and D being correct answers but what about A? I think A would also do the job.
upvoted 4 times
262cfa1
6 months, 3 weeks ago
It's easier apply C & D, than A. What do you think?
upvoted 3 times
...
evdw
6 months, 3 weeks ago
I agree
upvoted 1 times
...
...
TIGERZ44
8 months, 4 weeks ago
Selected Answer: CD
CD is correct
upvoted 3 times
...
andres8h
9 months ago
Selected Answer: CD
C and D are correct
upvoted 3 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel