ExamTopics Logo
Mail Us[email protected]
Menu
Fortinet Discussions
exam questions

Exam FCP_FGT_AD-7.4 All Questions

View all questions & answers for the FCP_FGT_AD-7.4 exam
Go to Exam

Exam FCP_FGT_AD-7.4 topic 1 question 25 discussion

Actual exam question from Fortinet's FCP_FGT_AD-7.4
Question #: 25
Topic #: 1
[All FCP_FGT_AD-7.4 Questions]

Refer to the exhibit to view the firewall policy.

Why would the firewall policy not block a well-known virus, for example eicar?

  • A. The action on the firewall policy is not set to deny.
  • B. The firewall policy is not configured in proxy-based inspection mode.
  • C. Web filter is not enabled on the firewall policy to complement the antivirus profile.
  • D. The firewall policy does not apply deep content inspection.
Show Suggested Answer Hide Answer
Suggested Answer: D 🗳️
by Beatledrew at Sept. 13, 2024, 3:35 p.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
6bee64f
7 months ago
Selected Answer: D
Magic word "would" makes the difference, proxy-based won't make difference, it is about doing deep inspection on the packets.
upvoted 1 times
...
jl2307
8 months ago
Selected Answer: D
Pag. 175 For antivirus or IPS control you should use a deep-inspection profile.
upvoted 2 times
...
sxcap
8 months, 1 week ago
Selected Answer: D
Deep inspection is needed to ensure good function for AV
upvoted 2 times
...
Fs4ntos
8 months, 3 weeks ago
The answer is B
upvoted 2 times
...
vuhidus
8 months, 4 weeks ago
Selected Answer: D
The firewall policy does not apply deep content inspection
upvoted 1 times
...
s4mu3l007
9 months, 2 weeks ago
The answer is D
upvoted 1 times
...
DBFront
10 months ago
Selected Answer: D
D is the correct answer.
upvoted 1 times
...
youla5
10 months, 2 weeks ago
D is the correct answer.
upvoted 2 times
...
Beatledrew
11 months ago
D would be the most accurate response. While Flow-Based inspection mode is limited, it still can scan viruses if they are not overly complex. SSL certificate inspection only inspects the certificate of the encrypted traffic, ensuring it is valid and not self-signed or expired. It does not decrypt the actual content of the SSL/TLS traffic, meaning that any malicious content inside encrypted HTTPS traffic will pass through without being inspected. So here, we can assume the EICAR file was accessed via HTTPS.
upvoted 4 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel