ExamTopics Logo
Mail Us[email protected]
Menu
Fortinet Discussions
exam questions

Exam NSE4_FGT-7.0 All Questions

View all questions & answers for the NSE4_FGT-7.0 exam
Go to Exam

Exam NSE4_FGT-7.0 topic 1 question 33 discussion

Actual exam question from Fortinet's NSE4_FGT-7.0
Question #: 33
Topic #: 1
[All NSE4_FGT-7.0 Questions]

An administrator wants to configure Dead Peer Detection (DPD) on IPSEC VPN for detecting dead tunnels. The requirement is that FortiGate sends DPD probes only when no traffic is observed in the tunnel.
Which DPD mode on FortiGate will meet the above requirement?

  • A. On Demand
  • B. Disabled
  • C. On Idle
  • D. Enabled
Show Suggested Answer Hide Answer
Suggested Answer: C 🗳️
by Israelq at Oct. 26, 2022, 12:55 a.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
raydel92
8 months, 4 weeks ago
Selected Answer: C
C. On Idle FortiGate Infrastructure 7.2 Study Guide (p.256): "On Idle: FortiGate sends DPD probes when no traffic is observed in the tunnel." Reference and download study guide: https://ebin.pub/fortinet-fortigate-infrastructure-study-guide-for-fortios-72.html
upvoted 1 times
...
geotown
9 months, 3 weeks ago
correct answer is C.
upvoted 1 times
...
SiqueiraZ
1 year, 5 months ago
On Idle: FortiGate sends DPD probes when no traffic is observed in the tunnel. An idle tunnel does not necessarily mean the tunnel is dead. Avoid this mode if you have many tunnels, because the overhead introduced by DPD can be very resource intensive.
upvoted 1 times
...
Rabbit414
1 year, 7 months ago
Selected Answer: C
Answer: C Fortigate Infrastructure 7.0, Page 214
upvoted 2 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel