Exam NSE4_FGT-6.0 topic 1 question 27 discussion

Actual exam question from Fortinet's NSE4_FGT-6.0

Question #: 27
Topic #: 1

[All NSE4_FGT-6.0 Questions]

How does FortiGate select the central SNAT policy that is applied to a TCP session?

A. It selects the SNAT policy specified in the configuration of the outgoing interface.
B. It selects the first matching central SNAT policy, reviewing from top to bottom.
C. It selects the central SNAT policy with the lowest priority.
D. It selects the SNAT policy specified in the configuration of the firewall policy that matches the traffic.

Show Suggested Answer

Suggested Answer: B 🗳️

by sethjam at July 2, 2020, 4:58 a.m.

Comments

Submit Cancel

kunjimon

4 years, 6 months ago

B is right

upvoted 2 times

...

JesseJames

4 years, 7 months ago

B is correct

upvoted 4 times

...

It could be B: A central SNAT policy is processed from top to bottom and if a match is found, src address and src port are translated based on the central SNAT policy OR it could be D: SNAT policy is selected according to the configuration of the firewall policy that matches the traffic. FOrtigate security 6.2 study guide page 165

upvoted 4 times

mninty

4 years, 9 months ago

The question mentions Central SNAT, so there is no SNAT on a firewall policy level.

upvoted 3 times

...

sethjam

4 years, 10 months ago

https://help.fortinet.com/fmgr/50hlp/56/5-6-1/FortiManager_Admin_Guide/1200_Policy%20and%20Objects/1000_Managing%20policies/1600_Central%20SNAT.htm

upvoted 1 times

...

Exam NSE4_FGT-6.0 All Questions

View all questions & answers for the NSE4_FGT-6.0 exam