B & C are correct:
B. Aggregation mode requires two FortiAnalyzer devices. (Page 189, "Log forwarding can run in modes other than aggregation mode, which is only applicable between two FortiAnalyzer devices")
C. Forwarding mode forwards logs to other FortiAnalyzer devices, syslog servers, or CEF servers. (Page 189. "In forwarding mode, FortiAnalyzer can also forward logs in real-time mode to a syslog server (such as FortiSIEM), a Common Event Format (CEF) server, or another FortiAnalyzer."
A. incorrect -
B. correct - pg. 189 "Log forwarding can run in modes other than aggregation mode, which is only applicable between two Forti Analyzer devices".
C. correct - pg. 189 "In forwarding mode, FAZ can also forward logs in real-time mode to a syslog server, CEF server or another FAZ".
D. incorrect - pg.189 "Forwarding mode only requires configuration on the client side".... not the server.
B and D are correct. Forwarding mode only requires configuration on the client side, as per Fortinet Docs. Aggregation Mode is only supported between two FortiAnalyzer devices, Admin Guide p. 188
A voting comment increases the vote count for the chosen answer by one.
Upvoting a comment with a selected answer will also increase the vote count towards that answer by one.
So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.
ae0cbf3
1 week, 4 days agoteatrodelsogno
2 months, 2 weeks agojdubyah_
6 months, 2 weeks agorxn6
6 months, 3 weeks agoSmilinJoe
6 months, 3 weeks agorxn6
6 months, 3 weeks agotruserud
4 months, 1 week ago