ExamTopics Logo
Mail Us[email protected]
Menu
Fortinet Discussions
exam questions

Exam NSE5_FMG-5.4 All Questions

View all questions & answers for the NSE5_FMG-5.4 exam
Go to Exam

Exam NSE5_FMG-5.4 topic 1 question 5 discussion

Actual exam question from Fortinet's NSE5_FMG-5.4
Question #: 5
Topic #: 1
[All NSE5_FMG-5.4 Questions]

What is the purpose of the Policy Check feature on FortiManager?

  • A. To find and merge duplicate policies in the policy package.
  • B. To find and provide recommendation to combine multiple separate policy packages into one common policy package.
  • C. To find and delete disabled firewall policies in the policy package.
  • D. To find and provide recommendation for optimizing policies in a policy package.
Show Suggested Answer Hide Answer
Suggested Answer: A 🗳️
The policy check tool allows you to check all policy packages within an ADOM to ensure consistency and eliminate conflicts that may prevent your devices from passing traffic. This allows you to optimize your policy sets and potentially reduce the size of your databases. The check will verify:
1. Object duplication: two objects that have identical definitions
2. Object shadowing: a higher priority object completely encompasses another object of the same type
3. Object overlap: one object partially overlaps another object of the same type
4. Object orphaning: an object has been defined but has not been used anywhere.
Reference:
https://docs.fortinet.com/uploaded/files/2905/FortiManager-5.4.0-Administration-Guide.pdf
by Christiandus at Feb. 17, 2023, 1:05 a.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
Christiandus
2 years, 2 months ago
Selected Answer: D
The policy check only recommends changes but does not execute any changes. Therefore D is correct, not A.
upvoted 2 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
exam
Someone Bought Contributor Access for:
SY0-701
London, 1 minute ago