FCP_WCS_AD-7.4無料問題集「Fortinet FCP - AWS Cloud Security 7.4 Administrator」

質問 1

Refer to the exhibit.

An administrator configured a FortiGate device to connect to the AWS API to retrieve resource values from the AWS console to create dynamic objects for the FortiGate policies. The administrator is unable to retrieve AWS dynamic objects on FortiGate.
Which two reasons can explain why? (Choose two.)

（A）AWS was not able to validate credentials provided by the AWS Lab SDN connector because of a clock skew between FortiGate and AWS.

（B）The AWS API call is not supported on XML version 1.0.

（C）The AWS Lab SDN connector failed to connect on port 401.

（D）The AWS Lab SDN did not find any instances in the configured VPC.

（E）The AWS Lab SDN connector is configured with an invalid AWS access or secret key.

正解：A、E 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

質問 2

You are troubleshooting network connectivity issues between two VMs deployed in AWS.
One VM is a FortiGate located on subnet "LAN" that is part of the VPC "Encryption". The other VM is a Windows server located on the subnet "servers" which is also in the "Encryption" VPC. You are unable to ping the Windows server from FortiGate.
What are two reasons for this? (Choose two.)

（A）The default AWS Network Access Control List (NACL) does not allow this traffic.

（B）The firewall in the Windows VM is blocking the traffic.

（C）Add an inbound allow ICMP rule in the security group attached to the windows server.

（D）By default, AWS does not allow ICMP traffic between subnets.

正解：B、C 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

質問 3

A customer has implemented GWLB between the partner and application VPCs. FortiGate appliances are deployed in the partner VPC with multiple AZs to inspect traffic transparently.
Which two things will happen to application traffic based on the GWLB deployment? (Choose two.)

（A）Inbound and outbound traffic will go to multiple devices, which will perform load balancing.

（B）Inbound and outbound traffic will go to the same device, which will perform stateful processing.

（C）The content of the original traffic exchanged between the GWLB and FortiGate will be preserved.

（D）The original traffic exchanged between the GWLB and FortiGate will be hashed for data integrity.

正解：A、B 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

質問 4

You need to deploy a new Windows server in AWS to offload web traffic from an existing web server in a different availability zone.
According to the AWS shared responsibility model, what three actions must you take to secure the new EC2 instance? (Choose three.)

（A）Configure security groups.

（B）Manage the operating system on the instance.

（C）Move all web servers into the same availability zone.

（D）Update software on the instance.

（E）Change the existing elastic load balancer (ELB) to a gateway load balancer

正解：A、B、D 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

FCP_WCS_AD-7.4 無料問題集「Fortinet FCP - AWS Cloud Security 7.4 Administrator」

弊社を連絡する

関連リンク

トップ試験