An administrator has a requirement to keep an application session from timing out on port 80. What two changes can the administrator make to resolve the issue without affecting any existing services running through FortiGate? (Choose two.)
A.
Create a new firewall policy with the new HTTP service and place it above the existing HTTP policy.
B.
Set the session TTL on the HTTP policy to maximum.
C.
Create a new service object for HTTP service and set the session TTL to never.
D.
Set the TTL value to never under config system-ttl.
A: never mentioned changing the TTL
C:
config firewall service custom
set session-ttl never
D: without affecting any existing services so not the answer
config system session-ttl
set default never
If you do not want the session to ever expire, you can enter , instead of specifying the number of seconds.never
https://docs.fortinet.com/document/fortigate/6.0.0/cli-reference/476602/system-session-ttl
https://community.fortinet.com/t5/FortiGate/Technical-Tip-How-to-set-Session-TTL-Value-to-Never/ta-p/198289?externalID=FD48961
A & C
C : Because its possible to set session TTL to never : https://community.fortinet.com/t5/FortiGate/Technical-Tip-How-to-set-Session-TTL-Value-to-Never/ta-p/198289?externalID=FD48961
A voting comment increases the vote count for the chosen answer by one.
Upvoting a comment with a selected answer will also increase the vote count towards that answer by one.
So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.
moneim
Highly Voted 3 years, 8 months agoalexilc
Highly Voted 3 years, 6 months agolrosadini
3 years, 3 months agoMithun_raam
Most Recent 2 years, 7 months agoVancero
2 years, 8 months agohaiderzaid
2 years, 9 months agoAJ31
3 years, 3 months agokkched
3 years, 3 months agoJimcool
3 years, 4 months agomimokob447
3 years, 5 months agoEnforc3r
3 years, 7 months agolrosadini
3 years, 3 months agoforti_Ctes
3 years, 7 months agoyadavarya97
3 years, 8 months ago